Question

You work as a security analyst for a small corporation. Your manager has asked you to check the external servers of a potential partner's company for potentially vulnerable ports. The company hosts an external web server at [provide the web server's domain or IP address]. In this lab, your task is to perform reconnaissance on the PartnerCorp external servers to find potentially vulnerable ports, as follows:

1. On Analyst-Lap, use the [specific website or tool] to determine the domain name servers used by [provide the domain name or IP address].
Answer Question 1.

2. Use nslookup to determine the primary web server address.
Answer Question 2.

Answer 1

To check for potentially vulnerable ports, first use a specified tool to identify domain name servers, then employ nslookup to find the primary web server address.

Step-by-step explanation:

To analyze potentially vulnerable ports on the external servers of a potential partner company, you will need to conduct a series of reconnaissance steps. Firstly, you should use a specified tool to determine the domain name servers (DNS) used by the partner company. This step is crucial for understanding how the company's domain names are resolved and managed, which is the first step in identifying the primary web server address.

Following the identification of DNS, you can proceed with the nslookup command. This tool is instrumental and widely used in network administration to query the Domain Name System and fetch information pertaining to domain names and their corresponding IP addresses. By using nslookup, you can pinpoint the IP address of the primary web server, which will allow you to conduct further port vulnerability assessments.