# DNSrecon Dnsrecon is a tool for performing reconnaissance on DNS servers and domains. It can be used for subdomain enumeration, zone transfers, and other types of reconnaissance. Here are the steps to install Dnsrecon on a Linux or macOS system: 1. Install Python, if you don't have it already installed: ```bash sudo apt-get install python ``` 2. Install Dnsrecon: ```bash pip install dnsrecon ``` 3. Once the installation is complete, you can run Dnsrecon from the terminal by typing: ```bash dnsrecon ``` To install Dnsrecon on a Windows system, you will need to follow a similar process, but some of the commands and steps may be different. Once Dnsrecon is installed, you can use it to perform subdomain enumeration and reconnaissance on a target domain. For example, to enumerate subdomains for the domain "example.com", you can run the following command: ```bash dnsrecon -d example.com -t brt ``` This will perform a brute force subdomain enumeration for the domain "example.com" and display the results in the terminal. You can also perform a zone transfer for the target domain to gather additional information about the subdomains and DNS server configuration. For example: ```bash dnsrecon -d example.com -t zt ``` These are the basic steps for installing and using Dnsrecon for subdomain enumeration and DNS reconnaissance. You can find more information on the options available with Dnsrecon by running the following command: ```bash dnsrecon -h ``` This will display the help information for the tool, which includes a description of each option and how to use it. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://bugbounty-for-starters.humbertojunior.com.br/reconnaissance-phase/subdomain-enumeration/dnsrecon.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.