Certified Ethical Hacker (CEH v10) — Question 130

You are performing a penetration test for a client and have gained shell access to a Windows machine on the internal network. You intend to retrieve all DNS records for the internal domain. If the DNS server is at 192.168.10.2 and the domain name is abccorp.local, what command would you type at the nslookup prompt to attempt a zone transfer?

Answer options

• A. list domain=abccorp.local type=zone
• B. Is ""d accorp.local
• C. list server=192.168.10.2 type=all
• D. Iserver 192.168.10.2 ""t all

Correct answer: B

Explanation

The correct answer is B because it uses the correct syntax for initiating a DNS zone transfer for the specified domain. The other options contain incorrect commands or syntax that would not successfully perform a zone transfer.