# DNS The Domain Name System (DNS) acts as the internet's phonebook, translating human-readable domain names (like google.com) into machine-readable IP addresses (like 8.8.8.8) that computers use to communicate. **1. DNS Lookups:** * When you enter a domain name in your web browser, your computer initiates a DNS lookup. * The request goes to your local DNS resolver (often provided by your internet service provider). * The resolver queries various DNS servers iteratively until it finds the authoritative name server for the specific domain. * The authoritative name server responds with the corresponding IP address. * Your browser receives the IP address and connects to the website's server. **2. Reverse DNS Lookups:** * Translating an IP address back to a domain name * Identifying the owner of a server associated with a suspicious IP address. * Investigating potential phishing attempts where the sender's email address might be spoofed. **3. Conducting DNS Lookups:** Several methods exist for conducting DNS lookups: * **Using your computer's command prompt:** * **Windows:** Open Command Prompt and type `nslookup `. * **Mac/Linux:** Open Terminal and type `dig `. * **Online DNS lookup tools:** Websites like MXToolbox or DNSLookup provide free tools to perform DNS lookups. * DNS records are not always publicly available. Privacy-focused organizations might choose to hide certain information. * Reverse DNS lookups might not always return a domain name, especially for dynamic IP addresses assigned by ISPs. * Combining DNS lookups with other OSINT techniques can yield valuable insights for investigations. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://moharat.gitbook.io/cylabs/cyber-security-assessment/reconnaissance/passive-reconnaissance/open-source-intelligence-osint/dns.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.