hacktricks/network-services-pentesting/43-pentesting-whois.md

# 43 - Pentesting WHOIS

<details>

<summary><strong>Naučite hakovanje AWS-a od nule do heroja sa</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>

Drugi načini podrške HackTricks-u:

* Ako želite da vidite svoju **kompaniju reklamiranu na HackTricks-u** ili **preuzmete HackTricks u PDF formatu** proverite [**PLANOVE ZA PRIJAVU**](https://github.com/sponsors/carlospolop)!
* Nabavite [**zvanični PEASS & HackTricks swag**](https://peass.creator-spring.com)
* Otkrijte [**Porodicu PEASS**](https://opensea.io/collection/the-peass-family), našu kolekciju ekskluzivnih [**NFT-ova**](https://opensea.io/collection/the-peass-family)
* **Pridružite se** 💬 [**Discord grupi**](https://discord.gg/hRep4RUj7f) ili [**telegram grupi**](https://t.me/peass) ili nas **pratite** na **Twitteru** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks\_live)**.**
* **Podelite svoje hakovanje trikove slanjem PR-ova na** [**HackTricks**](https://github.com/carlospolop/hacktricks) i [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repozitorijume.

</details>

**Try Hard Security Group**

<figure><img src="../.gitbook/assets/telegram-cloud-document-1-5159108904864449420.jpg" alt=""><figcaption></figcaption></figure>

{% embed url="https://discord.gg/tryhardsecurity" %}

***

## Osnovne informacije

Protokol **WHOIS** služi kao standardna metoda za **upit o registrovanima ili vlasnicima različitih internet resursa** putem specifičnih baza podataka. Ovi resursi obuhvataju imena domena, blokove IP adresa i autonomne sisteme, između ostalog. Pored toga, protokol se koristi za pristup širem spektru informacija.

**Podrazumevani port:** 43
```
PORT   STATE  SERVICE
43/tcp open   whois?
```
## Enumeracija

Dobijte sve informacije koje whois servis ima o domenu:
```bash
whois -h <HOST> -p <PORT> "domain.tld"
echo "domain.ltd" | nc -vn <HOST> <PORT>
```
Primetite da se ponekad prilikom zahteva za informacijama WHOIS servis koristi baza podataka koja se koristi u odgovoru:

![](<../.gitbook/assets/image (298).png>)

Takođe, WHOIS servis uvek mora koristiti **bazu podataka** za čuvanje i izvlačenje informacija. Stoga, moguća **SQLInjection** ranjivost može biti prisutna prilikom **upita** baze podataka na osnovu informacija koje je korisnik pružio. Na primer, izvršavanjem komande: `whois -h 10.10.10.155 -p 43 "a') or 1=1#"` mogli biste izvući sve informacije sačuvane u bazi podataka.

## Shodan

* `port:43 whois`

**Try Hard Security Group**

<figure><img src="../.gitbook/assets/telegram-cloud-document-1-5159108904864449420.jpg" alt=""><figcaption></figcaption></figure>

{% embed url="https://discord.gg/tryhardsecurity" %}

## HackTricks Automatic Commands
```
Protocol_Name: WHOIS    #Protocol Abbreviation if there is one.
Port_Number:  43     #Comma separated if there is more than one.
Protocol_Description: WHOIS         #Protocol Abbreviation Spelled out

Entry_1:
Name: Notes
Description: Notes for WHOIS
Note: |
The WHOIS protocol serves as a standard method for inquiring about the registrants or holders of various Internet resources through specific databases. These resources encompass domain names, blocks of IP addresses, and autonomous systems, among others. Beyond these, the protocol finds application in accessing a broader spectrum of information.


https://book.hacktricks.xyz/pentesting/pentesting-smtp

Entry_2:
Name: Banner Grab
Description: Grab WHOIS Banner
Command: whois -h {IP} -p 43 {Domain_Name} && echo {Domain_Name} | nc -vn {IP} 43
```
<details>

<summary><strong>Naučite hakovanje AWS-a od nule do heroja sa</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>

Drugi načini podrške HackTricks-u:

* Ako želite da vidite **vašu kompaniju reklamiranu na HackTricks-u** ili da **preuzmete HackTricks u PDF formatu** proverite [**PLANOVE ZA PRIJATELJSTVO**](https://github.com/sponsors/carlospolop)!
* Nabavite [**zvanični PEASS & HackTricks swag**](https://peass.creator-spring.com)
* Otkrijte [**Porodicu PEASS**](https://opensea.io/collection/the-peass-family), našu kolekciju ekskluzivnih [**NFT-ova**](https://opensea.io/collection/the-peass-family)
* **Pridružite se** 💬 [**Discord grupi**](https://discord.gg/hRep4RUj7f) ili [**telegram grupi**](https://t.me/peass) ili nas **pratite** na **Twitteru** 🐦 [**@carlospolopm**](https://twitter.com/hacktricks\_live)**.**
* **Podelite svoje hakovanje trikove slanjem PR-ova na** [**HackTricks**](https://github.com/carlospolop/hacktricks) i [**HackTricks Cloud**](https://github.com/carlospolop/hacktricks-cloud) github repozitorijume.

</details>
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`# 43 - Pentesting WHOIS`

Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00			`<details>`

Translated to Serbian 2024-02-10 13:11:20 +00:00			`<summary><strong>Naučite hakovanje AWS-a od nule do heroja sa</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated to Serbian 2024-02-10 13:11:20 +00:00			`Drugi načini podrške HackTricks-u:`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`* Ako želite da vidite svoju kompaniju reklamiranu na HackTricks-u ili preuzmete HackTricks u PDF formatu proverite [PLANOVE ZA PRIJAVU](https://github.com/sponsors/carlospolop)!`
Translated to Serbian 2024-02-10 13:11:20 +00:00			`* Nabavite [zvanični PEASS & HackTricks swag](https://peass.creator-spring.com)`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-26 15:52:14 +00:00			`* Otkrijte [Porodicu PEASS](https://opensea.io/collection/the-peass-family), našu kolekciju ekskluzivnih [NFT-ova](https://opensea.io/collection/the-peass-family)`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`* Pridružite se 💬 [Discord grupi](https://discord.gg/hRep4RUj7f) ili [telegram grupi](https://t.me/peass) ili nas pratite na Twitteru 🐦 [@carlospolopm](https://twitter.com/hacktricks\_live).`
Translated to Serbian 2024-02-10 13:11:20 +00:00			`* Podelite svoje hakovanje trikove slanjem PR-ova na [HackTricks](https://github.com/carlospolop/hacktricks) i [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github repozitorijume.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`

Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:38:08 +00:00			`Try Hard Security Group`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`<figure><img src="../.gitbook/assets/telegram-cloud-document-1-5159108904864449420.jpg" alt=""><figcaption></figcaption></figure>`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:38:08 +00:00			`{% embed url="https://discord.gg/tryhardsecurity" %}`

			`***`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`## Osnovne informacije`
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:38:08 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`Protokol WHOIS služi kao standardna metoda za upit o registrovanima ili vlasnicima različitih internet resursa putem specifičnih baza podataka. Ovi resursi obuhvataju imena domena, blokove IP adresa i autonomne sisteme, između ostalog. Pored toga, protokol se koristi za pristup širem spektru informacija.`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Serbian 2024-02-10 13:11:20 +00:00			`Podrazumevani port: 43`
GitBook: [#2777] gitbookissooooo slow I cannot write 2021-10-18 11:21:18 +00:00			```
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			`PORT STATE SERVICE`
			`43/tcp open whois?`
			```
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`## Enumeracija`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated to Serbian 2024-02-10 13:11:20 +00:00			`Dobijte sve informacije koje whois servis ima o domenu:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00			```bash
			`whois -h <HOST> -p <PORT> "domain.tld"`
			`echo "domain.ltd" \| nc -vn <HOST> <PORT>`
			```
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`Primetite da se ponekad prilikom zahteva za informacijama WHOIS servis koristi baza podataka koja se koristi u odgovoru:`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`![](<../.gitbook/assets/image (298).png>)`
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			Takođe, WHOIS servis uvek mora koristiti bazu podataka za čuvanje i izvlačenje informacija. Stoga, moguća SQLInjection ranjivost može biti prisutna prilikom upita baze podataka na osnovu informacija koje je korisnik pružio. Na primer, izvršavanjem komande: `whois -h 10.10.10.155 -p 43 "a') or 1=1#"` mogli biste izvući sve informacije sačuvane u bazi podataka.
GitBook: [master] 351 pages and 442 assets modified 2020-07-15 15:43:14 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`## Shodan`
GitBook: [master] one page modified 2020-09-24 19:59:49 +00:00
			* `port:43 whois`

Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:38:08 +00:00			`Try Hard Security Group`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`<figure><img src="../.gitbook/assets/telegram-cloud-document-1-5159108904864449420.jpg" alt=""><figcaption></figcaption></figure>`
Translated ['README.md', 'forensics/basic-forensic-methodology/partition 2024-03-14 23:38:08 +00:00
			`{% embed url="https://discord.gg/tryhardsecurity" %}`

Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`## HackTricks Automatic Commands`
GitBook: [#2777] gitbookissooooo slow I cannot write 2021-10-18 11:21:18 +00:00			```
HAC 43 2021-08-12 12:49:03 +00:00			`Protocol_Name: WHOIS #Protocol Abbreviation if there is one.`
			`Port_Number: 43 #Comma separated if there is more than one.`
			`Protocol_Description: WHOIS #Protocol Abbreviation Spelled out`

43 Yaml 2021-08-15 17:57:28 +00:00			`Entry_1:`
Translated to Serbian 2024-02-10 13:11:20 +00:00			`Name: Notes`
			`Description: Notes for WHOIS`
			`Note: \|`
			`The WHOIS protocol serves as a standard method for inquiring about the registrants or holders of various Internet resources through specific databases. These resources encompass domain names, blocks of IP addresses, and autonomous systems, among others. Beyond these, the protocol finds application in accessing a broader spectrum of information.`
a 2024-02-08 03:08:28 +00:00
43 Yaml 2021-08-15 17:57:28 +00:00
Translated to Serbian 2024-02-10 13:11:20 +00:00			`https://book.hacktricks.xyz/pentesting/pentesting-smtp`
43 Yaml 2021-08-15 17:57:28 +00:00
			`Entry_2:`
Translated to Serbian 2024-02-10 13:11:20 +00:00			`Name: Banner Grab`
			`Description: Grab WHOIS Banner`
			`Command: whois -h {IP} -p 43 {Domain_Name} && echo {Domain_Name} \| nc -vn {IP} 43`
HAC 43 2021-08-12 12:49:03 +00:00			```
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00			`<details>`

Translated to Serbian 2024-02-10 13:11:20 +00:00			`<summary><strong>Naučite hakovanje AWS-a od nule do heroja sa</strong> <a href="https://training.hacktricks.xyz/courses/arte"><strong>htARTE (HackTricks AWS Red Team Expert)</strong></a><strong>!</strong></summary>`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`Drugi načini podrške HackTricks-u:`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-26 15:52:14 +00:00			`* Ako želite da vidite vašu kompaniju reklamiranu na HackTricks-u ili da preuzmete HackTricks u PDF formatu proverite [PLANOVE ZA PRIJATELJSTVO](https://github.com/sponsors/carlospolop)!`
Translated to Serbian 2024-02-10 13:11:20 +00:00			`* Nabavite [zvanični PEASS & HackTricks swag](https://peass.creator-spring.com)`
Translated ['forensics/basic-forensic-methodology/partitions-file-system 2024-03-24 13:29:10 +00:00			`* Otkrijte [Porodicu PEASS](https://opensea.io/collection/the-peass-family), našu kolekciju ekskluzivnih [NFT-ova](https://opensea.io/collection/the-peass-family)`
Translated ['README.md', 'binary-exploitation/arbitrary-write-2-exec/REA 2024-04-07 04:23:52 +00:00			`* Pridružite se 💬 [Discord grupi](https://discord.gg/hRep4RUj7f) ili [telegram grupi](https://t.me/peass) ili nas pratite na Twitteru 🐦 [@carlospolopm](https://twitter.com/hacktricks\_live).`
Translated to Serbian 2024-02-10 13:11:20 +00:00			`* Podelite svoje hakovanje trikove slanjem PR-ova na [HackTricks](https://github.com/carlospolop/hacktricks) i [HackTricks Cloud](https://github.com/carlospolop/hacktricks-cloud) github repozitorijume.`
Ad hacktricks sponsoring 2022-04-28 16:01:33 +00:00
			`</details>`