Enumeration - DNS

whois

whois example.com

domain to ip

nslookup example.com

host $(domain)
host -t A $(domain)
host -t MX $(domain)
host -t TXT $(domain)
host -t CNAME $(domain)

host -l $(domain) ns1.$(domain)
host -l $(domain) ns2.$(domain)
host -l $(domain) ns3.$(domain)

dnsrecon -d $(domain)

dnsrecon -d $(domain) -t axfr

dnsrecon -d $(domain) -D subdomain.txt -t brt

dig axfr @1.1.1.1 example.com

dnsenum $(domain)