P1-01 domain information collection
1. Domain Name
on the internet name of a computer or group of computers.
Domain name corresponding to the sub, has a corresponding host header.
(1) visit the website process:
My understanding is that DNS server for resolution.
First PC access, such as Sina Sports (sports.sina.com.cn), only know the domain name, do not know the IP address of the server Sina Sports of the project is located, it can not be accessed directly. Need to request access to the domain name, sent to DNS server, the DNS server name, the IP address is obtained, return to PC, PC through the IP address, send an access request, and then return to the page display Sina Sports.
PS: In special cases, the PC can only access the LAN computer, do not allow access to external sites that case, how to set up PC yet.?
2.whois Introduction
Transfer Protocol is used to query whois protocol information .whois domain names and IP owners and so on.
Whois information needs of different domain name suffix to a different whois database queries. .Com domain by the operator VerSign management, .cn by the CNNIC (China Internet Network Information Center) management
43 port whois server, sends a query keyword, to accept the results of the query server.
PS: Reference is made to the port, in addition to common tomcat 8080 port, which you also commonly used ports familiar?
3.whois inquiry
Queries were obtained by whois domain name registration information, and then use a search engine to search for information, for more personal information. (We like the constant cloud site registrants me, but also my webmaster.)
whois query method:
(1) .Web Interface query:
More pro-test website available.
(2) .Whois command-line query.
Kali linux, comes with query tool, related videos, manager before the holiday segment share. ([06] Kali Linux security test video tutorial)
Query we use the constant cloud site owners home: www.sdhy-security.com, we can see that the domain name expires on 21 March 2020, prior to our website www.sdhyun.net , because there is no time renewals, resulting in names after they expire cybersquatting others.
At the same time found contact email and phone number, Web site ICP record is filed by Ali cloud, so all relevant information is Ali cloud.
4.ICP record
Internet Content Provider Internet content providers.
Business website, licensing system.
Non-operating site, and a registration system.
In the "territory of People's Republic of China", unauthorized or filed. The implication, server set up outside, they are not regulated, and what we called over the wall.
Web Interface queries:
More pro-test website available.
In the demo video sites: http://beian.miit.gov.cn/state/outPortal/loginPortal.action
Check out this information compare all can see the name of the person in charge.