https://slightlymore.co.uk/tags/misconfigurations/Recent content in Misconfigurations on slightlymoreHugoen-GB<a href="https://creativecommons.org/licenses/by/4.0/" target="_blank" rel="license">CC BY 4.0</a> by Clinton MontagueWed, 17 Dec 2025 21:33:27 +0000https://slightlymore.co.uk/dns-zone-transfers-with-dig/Wed, 10 Dec 2025 00:00:00 +0000https://slightlymore.co.uk/dns-zone-transfers-with-dig/<p>You can do a DNS zone transfer using <code>dig</code> by using <code>axfr</code></p> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-bash" data-lang="bash"><span class="line"><span class="cl">dig axfr @dns-server.com target.tld </span></span></code></pre></div><p>This will return all dns records for <code>target.tld</code>. It&rsquo;s intended to copy all records from a primary to secondary server and should only happen if trusted, but misconfigured servers may allow unauthorised transfers allowing for enumeration without <a href="https://slightlymore.co.uk/brute-forcing-subdomain-enumeration">brute forcing 🌿</a> .</p>