1 00:00:00,480 --> 00:00:02,210 Hi, guys, how are you all in this lecture? 2 00:00:02,250 --> 00:00:07,560 What we are going to do here is we are going to understand what is hoy's and what is who is information 3 00:00:07,560 --> 00:00:09,390 that it contains inside it. 4 00:00:09,720 --> 00:00:12,960 OK, so first, let me understand what is Hoy's? 5 00:00:13,410 --> 00:00:19,020 So his records are used to retrieve the registration details provided by the TOMINE owner to the domain 6 00:00:19,020 --> 00:00:19,690 registrar. 7 00:00:20,190 --> 00:00:26,550 It is a protocol that is used to extract information about the domain and associated contact information. 8 00:00:27,030 --> 00:00:32,640 So you can you can simply view the name, address, phone number and email address of the person or 9 00:00:32,640 --> 00:00:35,210 entity who registered the domain name. 10 00:00:35,520 --> 00:00:42,090 So whose servers are operated by regional Internet registrars, which is also called this idea and can 11 00:00:42,090 --> 00:00:44,460 be created directly over the port facility. 12 00:00:44,910 --> 00:00:50,520 So in the early days, there was only one who is server on the Internet, but the number of servers 13 00:00:50,520 --> 00:00:53,000 are increased with the expansion of Internet. 14 00:00:53,400 --> 00:00:59,100 If the information for the requested domain name is not present with the created server, then the request 15 00:00:59,100 --> 00:01:04,670 is then forwarded to the WHO is server of the domain registrar and the result return to the end client. 16 00:01:05,790 --> 00:01:09,930 So the WHO is a tool is built into the clinics and can be run from the terminal. 17 00:01:10,440 --> 00:01:18,120 So now guys, let's see how we can use who is a soldier for extracting the information about any particular 18 00:01:18,120 --> 00:01:18,700 domain name. 19 00:01:19,080 --> 00:01:25,350 OK, so for using the who is server, what you need to do here is you need to simply open it with the 20 00:01:25,350 --> 00:01:26,180 help of Tumnus. 21 00:01:26,180 --> 00:01:30,990 So when you click on this black icon, it will open the terminal window for you. 22 00:01:31,020 --> 00:01:32,640 OK, now let's. 23 00:01:33,960 --> 00:01:35,880 Increase the size of this window. 24 00:01:36,560 --> 00:01:44,450 OK, so what you need to do there is simply the syntax of using who is is simply type who is in the 25 00:01:44,460 --> 00:01:45,060 domain name. 26 00:01:45,070 --> 00:01:49,410 So I'm going to extract information about the two dot com and hit enter. 27 00:01:51,400 --> 00:01:57,010 After hitting enter, it will extract all the information it contains inside it, so it will take some 28 00:01:57,010 --> 00:01:57,240 time. 29 00:01:57,250 --> 00:01:59,900 You have to wait till the completion of all of these things. 30 00:02:00,460 --> 00:02:05,230 OK, so now as you can see that we are having this much information using who is command. 31 00:02:06,100 --> 00:02:13,360 OK, so if you are a professional penalties and then you know what information will be the juicy data 32 00:02:13,360 --> 00:02:13,780 for you. 33 00:02:13,960 --> 00:02:19,900 But if you are not in this field, so what you can do here is you can simply not known each and everything. 34 00:02:20,230 --> 00:02:24,700 OK, so now let's see from the starting, OK? 35 00:02:24,940 --> 00:02:26,680 So this is the dominion that we have. 36 00:02:28,820 --> 00:02:37,820 This is the registered domain name star who so is this, which is register C dot com and the entry date 37 00:02:37,820 --> 00:02:45,020 is this registrars, FLC, Ironi contact email is this and these are the things now here. 38 00:02:45,020 --> 00:02:48,290 What you can see here is what are the name servers names. 39 00:02:48,300 --> 00:02:55,640 There was this AP for Facebook dot com and then when you scroll it down. 40 00:02:58,040 --> 00:03:01,320 You will see the related information about the Facebook dot com. 41 00:03:01,550 --> 00:03:04,940 So what happened here is inside the whose's. 42 00:03:04,940 --> 00:03:10,340 As you can see here, the restaurant name is Domain Admin and organization is Facebook. 43 00:03:10,550 --> 00:03:12,890 And the city is this this. 44 00:03:13,580 --> 00:03:14,890 And this is the zip code. 45 00:03:15,200 --> 00:03:16,280 And this is the country. 46 00:03:16,290 --> 00:03:17,400 This is the phone number. 47 00:03:17,750 --> 00:03:23,870 And as you can see, this is the email domain or email of restaurant and. 48 00:03:24,780 --> 00:03:27,990 You will find all the little information about the target. 49 00:03:28,800 --> 00:03:34,830 OK, if you want to see more information about the target, then you can simply subscribe to any service 50 00:03:35,220 --> 00:03:36,880 which provides the information. 51 00:03:37,380 --> 00:03:39,480 So this is how you can choose who is. 52 00:03:39,510 --> 00:03:45,050 OK, so now this is the way you can use your terminal for the whois information. 53 00:03:45,330 --> 00:03:48,130 So there is another way using the Web browser. 54 00:03:48,200 --> 00:03:55,200 There are many sites which provide to the service of who is simply type who is. 55 00:03:56,090 --> 00:03:57,320 And hit enter. 56 00:03:59,840 --> 00:04:05,990 So often heading into what you will see, there are many surveys that many websites that are providing 57 00:04:05,990 --> 00:04:10,180 the WHO is information about any particular domain. 58 00:04:10,200 --> 00:04:13,950 So I'm going with this, OK, who is dot com? 59 00:04:14,360 --> 00:04:17,900 So when you click on this link, it will look like something like this. 60 00:04:18,000 --> 00:04:19,160 OK, so. 61 00:04:20,310 --> 00:04:22,410 OK, so this is the. 62 00:04:24,100 --> 00:04:25,930 In the face of this, simply. 63 00:04:29,730 --> 00:04:31,120 Their domain name and hit enter. 64 00:04:31,350 --> 00:04:38,690 So when you hit enter, it will attract all the information in a detailed manner and in a very collected 65 00:04:38,700 --> 00:04:44,670 manner in front of you to represent each and everything what it has related to that particular domain 66 00:04:44,670 --> 00:04:45,210 inside it. 67 00:04:45,420 --> 00:04:47,050 OK, so this is the domain. 68 00:04:47,100 --> 00:04:48,300 This is the registrar. 69 00:04:48,540 --> 00:04:52,190 And this will expand on this and updated on this date. 70 00:04:52,440 --> 00:04:55,680 And this is a status and these are the name servers. 71 00:04:56,100 --> 00:05:00,360 OK, so now what you when you scroll it down, you will find this. 72 00:05:00,540 --> 00:05:07,200 This is the contact detail of the admin and then we are having administrative contact. 73 00:05:07,230 --> 00:05:11,490 OK, and for the technical content, you will find these. 74 00:05:12,690 --> 00:05:17,550 Then we are having this detail that we have seen using the terminal. 75 00:05:18,300 --> 00:05:20,790 OK, so this is information that we have. 76 00:05:20,790 --> 00:05:29,670 You suppose that I want to see the information like, OK, Yahoo dot com and hit enter. 77 00:05:30,450 --> 00:05:34,320 So when you hit enter, you will find these informations regarding Yahoo! 78 00:05:34,320 --> 00:05:34,840 Dot com. 79 00:05:35,380 --> 00:05:39,970 OK, now this is the way to find out the general information about the domain. 80 00:05:40,230 --> 00:05:44,600 So this is not a very juicy data for you, for you. 81 00:05:44,880 --> 00:05:48,360 This data can help you in info or social engineering, actually. 82 00:05:48,580 --> 00:05:51,020 OK, this data will help you in social engineering. 83 00:05:51,330 --> 00:05:57,630 So this is how you can use your terminal and this is how you can use your website or Google search for 84 00:05:57,630 --> 00:06:03,900 finding the WHO is information regarding or related to any particular domain name or any Web site. 85 00:06:04,140 --> 00:06:05,610 So this is all for this lecture.