CASP+ CAS-003 – Question 274


A security consultant is performing a penetration test on and wants to discover the DNS administrator’s email address to use in a later social engineering attack. The information listed with the DNS registrar is private. Which of the following commands will also disclose the email address?

A. dig -h
B. whois -f
C. nslookup -type=SOA
D. dnsrecon -i -t hostmaster

Correct Answer: C