利用nslookup暴力猜二级域名

C:\Documents and Settings\Administrator>nslookup
Default Server:  dns1.sdjnptt.net.cn
Address:  202.102.152.3

> set type=ns                          //查询目标域名的ns
> tsmc.edu.cn
Server:  dns1.sdjnptt.net.cn
Address:  202.102.152.3

Non-authoritative answer:
tsmc.edu.cn     nameserver = taishan.tsmc.edu.cn
tsmc.edu.cn     nameserver = tsweb.tsmc.edu.cn
> server taishan.tsmc.edu.cn              //server后要跟上面中所查询到的NS
Default Server:  taishan.tsmc.edu.cn
Address:  202.194.232.10

> ls tsmc.edu.cn                                       //ls后面跟要目标域名
[taishan.tsmc.edu.cn]
 tsmc.edu.cn.                   NS     server = tsweb.tsmc.edu.cn
 tsmc.edu.cn.                   NS     server = taishan.tsmc.edu.cn
 alumni                         A      202.194.232.41
 gate                           A      202.194.232.23
 gateway                        A      202.194.232.25
 jpkc                           A      202.194.232.47
 mail                           A      202.194.232.22
 taishan                        A      202.194.232.10
 tsmcweb                        A      202.194.232.15
 tsweb                          A      202.194.232.11
 web                            A      202.194.232.16
 webmail                        A      202.194.232.22
> exit

C:\Documents and Settings\Administrator>