Writeup Aria
RoadMapRoom Other

room

room

Introductory Networking

OSI

Siap πŸ‘ Ini ringkasan inti OSI Model versi singkat & gampang diingat:

OSI Model (7 Layer) – Ringkasan Penting

Mnemonic: Anxious Pale Shakespeare Treated Nervous Drunks Patiently (Application β†’ Physical)

Layer 7 – Application

  • Berhubungan langsung dengan aplikasi (browser, email, dll)
  • Menyediakan interface agar aplikasi bisa kirim/terima data

Layer 6 – Presentation

  • Format & transform data
  • Enkripsi, dekripsi, kompresi
  • Supaya data bisa dipahami oleh sistem tujuan

Layer 5 – Session

  • Membuat, menjaga, dan mengakhiri sesi komunikasi
  • Memungkinkan banyak koneksi bersamaan tanpa data tercampur

Layer 4 – Transport

  • Menentukan protokol transport

    • TCP β†’ reliabel, lambat, ada koneksi (web, file transfer)
    • UDP β†’ cepat, tidak reliabel (streaming, video call)

  • Memecah data jadi segment / datagram

Layer 3 – Network

  • Menentukan rute & tujuan
  • Menggunakan IP address (IPv4/IPv6)
  • Contoh: routing di internet

Layer 2 – Data Link

  • Menggunakan MAC address
  • Mengemas data jadi frame
  • Error checking sebelum dikirim ke hardware

Layer 1 – Physical

  • Hardware & sinyal fisik
  • Kabel, listrik, gelombang
  • Kirim bit 0 dan 1 secara fisik
  • Which layer would choose to send data over TCP or UDP? Answer with the number of the layer: e.g. if the answer would be "the application layer", then you would enter "7".

4

  • Which layer checks received information to make sure that it hasn't been corrupted? Answer with the number of the layer: e.g. if the answer would be "the application layer", then you would enter "7".
    • Lapisan manakah yang memeriksa informasi yang diterima untuk memastikan bahwa informasi tersebut tidak rusak? Jawablah dengan nomor lapisan tersebut: misalnya, jika jawabannya adalah "lapisan aplikasi", maka Anda akan memasukkan "7".

2

  • In which layer would data be formatted in preparation for transmission? Answer with the number of the layer: e.g. if the answer would be "the application layer", then you would enter "7".
    • Pada lapisan manakah data akan diformat sebagai persiapan untuk transmisi? Jawablah dengan nomor lapisan tersebut: misalnya, jika jawabannya adalah "lapisan aplikasi", maka Anda akan memasukkan "7".

2

  • Which layer transmits and receives data? Answer with the number of the layer: e.g. if the answer would be "the application layer", then you would enter "7".
    • Lapisan manakah yang mengirim dan menerima data? Jawablah dengan nomor lapisan tersebut: misalnya, jika jawabannya adalah "lapisan aplikasi", maka Anda akan memasukkan "7".

1

  • Which layer encrypts, compresses, or otherwise transforms the initial data to give it a standardised format? Answer with the number of the layer: e.g. if the answer would be "the application layer", then you would enter "7".
    • Lapisan manakah yang mengenkripsi, mengompresi, atau mengubah data awal untuk memberikannya format standar?

6

  • Which layer tracks communications between the host and receiving computers?
    • Lapisan manakah yang melacak komunikasi antara host dan komputer penerima?

5

  • Which layer accepts communication requests from applications?

7

  • Which layer handles logical addressing?

3

  • When sending data over TCP, what would you call the "bite-sized" pieces of data?

segments

  • [Research] Which layer would the FTP protocol communicate with? Answer with the number of the layer: e.g. if the answer would be "the application layer", then you would enter "7".

7

  • Which transport layer protocol would be best suited to transmit a live video?

UDP

Encapsulation

Encapsulation (Pengiriman Data)

  • Saat data turun dari Layer 7 β†’ Layer 1, setiap layer menambahkan header (dan Data Link juga menambahkan trailer).

  • Header berisi informasi spesifik layer:

    • Transport β†’ info TCP/UDP
    • Network β†’ IP sumber & tujuan
    • Data Link β†’ MAC + error checking (trailer)

  • Trailer membantu cek integritas data (deteksi korupsi & gangguan).

Nama data di tiap layer
  • Layer 7–5: Data
  • Layer 4: Segment (TCP) / Datagram (UDP)
  • Layer 3: Packet
  • Layer 2: Frame
  • Layer 1: Bits

De-encapsulation (Penerimaan Data)

  • Proses kebalikan dari encapsulation.
  • Data naik dari Physical β†’ Application, sambil menghapus header/trailer tiap layer.
  • Akhirnya data sampai ke aplikasi dalam bentuk asli.

1768139146945

  • How would you refer to data at layer 2 of the encapsulation process (with the OSI model)?

Frames

  • How would you refer to data at layer 4 of the encapsulation process (with the OSI model), if the UDP protocol has been selected?

Datagrams

  • What process would a computer perform on a received message?

De-encapsulation

  • Which is the only layer of the OSI model to add a trailer during encapsulation?

Data Link

  • Does encapsulation provide an extra layer of security (Aye/Nay)?

Aye

The TCP/IP Model

TCP/IP Model – Ringkasan Penting

Layer TCP/IP (4 layer)
  1. Application β†’ layanan untuk aplikasi (HTTP, FTP, DNS, dll)
  2. Transport β†’ komunikasi end-to-end (TCP / UDP)
  3. Internet β†’ addressing & routing (IP)
  4. Network Interface β†’ pengiriman fisik data (gabungan Data Link + Physical)

Catatan: Kadang dibagi jadi 5 layer, tapi resmi tetap 4 layer (RFC1122).

Kenapa OSI Masih Dipakai?

  • TCP/IP = dipakai di dunia nyata
  • OSI = lebih detail & rapi β†’ cocok untuk belajar konsep jaringan

Pemetaan OSI ↔ TCP/IP

  • OSI Layer 7–5 β†’ TCP/IP Application
  • OSI Layer 4 β†’ TCP/IP Transport
  • OSI Layer 3 β†’ TCP/IP Internet
  • OSI Layer 2–1 β†’ TCP/IP Network Interface

Encapsulation

  • Sama seperti OSI:
    • Setiap layer menambahkan header saat kirim
    • Header dihapus saat terima (de-encapsulation)

TCP (Transmission Control Protocol)

  • Connection-based
  • Reliable (data hilang akan dikirim ulang)
  • Digunakan saat akurasi lebih penting dari kecepatan
Three-Way Handshake (Wajib sebelum TCP)
  1. SYN β†’ client minta koneksi
  2. SYN-ACK β†’ server setuju
  3. ACK β†’ client konfirmasi βœ… Koneksi siap β†’ data dikirim

Sejarah Singkat

  • Dulu tidak ada standar, perangkat beda vendor tidak kompatibel
  • TCP/IP (1982) dibuat oleh US DoD β†’ standar global
  • OSI dibuat kemudian oleh ISO β†’ fokus edukasi
  • Which model was introduced first, OSI or TCP/IP?

TCP/IP

  • Which layer of the TCP/IP model covers the functionality of the Transport layer of the OSI model (Full Name)?

Transport

  • Which layer of the TCP/IP model covers the functionality of the Session layer of the OSI model (Full Name)?

Application

  • The Network Interface layer of the TCP/IP model covers the functionality of two layers in the OSI model. These layers are Data Link, and?.. (Full Name)?

Physical

  • Which layer of the TCP/IP model handles the functionality of the OSI network layer?

Internet

  • What kind of protocol is TCP?

Connection-based

  • What is SYN short for?

Synchronise

  • What is the second step of the three way handshake?

SYN/ACK

  • What is the short name for the "Acknowledgement" segment in the three-way handshake?

ACK

Ping

  • What command would you use to ping the bbc.co.uk website?

ping bbc.co.uk

ping muirlandoracle.co.uk
# PING muirlandoracle.co.uk(2001-08d8-100f-f000-0000-0000-0000-0241.elastic-ssl.ui-r.com (2001:8d8:100f:f000::241)) 56 data bytes

ping muirlandoracle.co.uk -4
# PING  (217.160.0.152) 56(84) bytes of data.
# 64 bytes from 217-160-0-152.elastic-ssl.ui-r.com (217.160.0.152): icmp_seq=1 ttl=53 time=163 ms
  • What is the IPv4 address?

217.160.0.152

ping --help
# Options:
#   <destination>      dns name or ip address
#   -a                 use audible ping
#   [...]
#   -i <interval>      seconds between sending each packet
#   [...]
  • What switch lets you change the interval of sent ping requests?

-i

  • What switch would allow you to restrict requests to IPv4?

-4

  • What switch would give you a more verbose output?

-v

Traceroute

traceroute tryhackme.com
# traceroute to tryhackme.com (104.20.29.66), 30 hops max, 60 byte packets
#  1  * * *
#  2  10.76.196.122 (10.76.196.122)  1.430 ms 10.76.196.120 (10.76.196.120)  1.507 ms  1.496 ms
#  3  143.198.252.10 (143.198.252.10)  1.237 ms 143.198.252.0 (143.198.252.0)  1.318 ms 143.198.252.14 (143.198.252.14)  1.308 ms
#  4  143.244.192.94 (143.244.192.94)  1.113 ms 143.244.192.88 (143.244.192.88)  1.339 ms 143.244.192.86 (143.244.192.86)  1.026 ms
#  5  143.244.224.234 (143.244.224.234)  1.357 ms 143.244.224.232 (143.244.224.232)  1.210 ms 143.244.224.234 (143.244.224.234)  1.419 ms
#  6  143.244.224.211 (143.244.224.211)  1.003 ms  0.519 ms 143.244.224.207 (143.244.224.207)  0.488 ms
#  7  146.190.180.57 (146.190.180.57)  1.836 ms  1.782 ms  1.838 ms
#  8  162.158.160.1 (162.158.160.1)  13.714 ms 172.69.117.60 (172.69.117.60)  0.936 ms  0.913 ms
#  9  172.69.117.51 (172.69.117.51)  1.247 ms 172.69.117.55 (172.69.117.55)  16.555 ms 162.158.160.145 (162.158.160.145)  1.875 ms
# 10  104.20.29.66 (104.20.29.66)  1.392 ms  1.368 ms  1.260 ms
traceroute --help
#   -i device  --interface=device
            #   Specify a network interface to operate with
#   -T  --tcp                   Use TCP SYN for tracerouting (default port is 80)
  • What switch would you use to specify an interface when using Traceroute?

-i

  • What switch would you use if you wanted to use TCP SYN requests when tracing the route?

-T

  • [Lateral Thinking] Which layer of the TCP/IP model will traceroute run on by default (Windows)?

Internet

WHOIS

Berikut ringkasan penting tentang Domain & WHOIS:

Domain Names

  • Domain = nama mudah diingat untuk menggantikan IP address
  • Contoh: tryhackme.com β†’ diterjemahkan ke IP
  • Domain disewa (leased) lewat Domain Registrar untuk jangka waktu tertentu

WHOIS

  • WHOIS digunakan untuk melihat informasi pendaftaran domain
  • Bisa menampilkan:
    • Nama domain
    • Registrar
    • Tanggal registrasi & expired
    • Nameserver
  • Di Eropa, data pribadi biasanya disembunyikan (redacted)
whois facebook.com
#   Domain Name: FACEBOOK.COM
#    Registry Domain ID: 2320948_DOMAIN_COM-VRSN
#    Registrar WHOIS Server: whois.registrarsafe.com
#    Registrar URL: http://www.registrarsafe.com
#    Updated Date: 2025-04-23T19:08:37Z
#    Creation Date: 1997-03-29T05:00:00Z
#    Registry Expiry Date: 2034-03-30T04:00:00Z
#    Registrar: RegistrarSafe, LLC
#    Registrar IANA ID: 3237
#    Registrar Abuse Contact Email: abusecomplaints@registrarsafe.com
#    Registrar Abuse Contact Phone: +1-650-308-7004
#    Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
#    Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
#    Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
#    Domain Status: serverDeleteProhibited https://icann.org/epp#serverDeleteProhibited
#    Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited
#    Domain Status: serverUpdateProhibited https://icann.org/epp#serverUpdateProhibited
#    Name Server: A.NS.FACEBOOK.COM
#    Name Server: B.NS.FACEBOOK.COM
#    Name Server: C.NS.FACEBOOK.COM
#    Name Server: D.NS.FACEBOOK.COM
#    DNSSEC: unsigned
#    URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
# >>> Last update of whois database: 2026-01-11T14:05:50Z <<<

# For more information on Whois status codes, please visit https://icann.org/epp

# NOTICE: The expiration date displayed in this record is the date the
# registrar's sponsorship of the domain name registration in the registry is
# currently set to expire. This date does not necessarily reflect the expiration
# date of the domain name registrant's agreement with the sponsoring
# registrar.  Users may consult the sponsoring registrar's Whois database to
# view the registrar's reported date of expiration for this registration.

# TERMS OF USE: You are not authorized to access or query our Whois
# database through the use of electronic processes that are high-volume and
# automated except as reasonably necessary to register domain names or
# modify existing registrations; the Data in VeriSign Global Registry
# Services' ("VeriSign") Whois database is provided by VeriSign for
# information purposes only, and to assist persons in obtaining information
# about or related to a domain name registration record. VeriSign does not
# guarantee its accuracy. By submitting a Whois query, you agree to abide
# by the following terms of use: You agree that you may use this Data only
# for lawful purposes and that under no circumstances will you use this Data
# to: (1) allow, enable, or otherwise support the transmission of mass
# unsolicited, commercial advertising or solicitations via e-mail, telephone,
# or facsimile; or (2) enable high volume, automated, electronic processes
# that apply to VeriSign (or its computer systems). The compilation,
# repackaging, dissemination or other use of this Data is expressly
# prohibited without the prior written consent of VeriSign. You agree not to
# use electronic processes that are automated and high-volume to access or
# query the Whois database except as reasonably necessary to register
# domain names or modify existing registrations. VeriSign reserves the right
# to restrict your access to the Whois database in its sole discretion to ensure
# operational stability.  VeriSign may restrict or terminate your access to the
# Whois database for failure to abide by these terms of use. VeriSign
# reserves the right to modify these terms at any time.

# The Registry database contains ONLY .COM, .NET, .EDU domains and
# Registrars.
# Domain Name: facebook.com
# Registry Domain ID:
# Registrar WHOIS Server: whois.registrarsec.com
# Registrar URL: https://registrarsec.com
# Updated Date: 2025-04-23T19:08:37Z
# Creation Date: 1997-03-29T05:00:00Z
# Registrar Registration Expiration Date: 2034-03-30T04:00:00Z
# Registrar: RegistrarSafe, LLC
# Registrar IANA ID: 3237
# Domain Status: clientDeleteProhibited https://www.icann.org/epp#clientDeleteProhibited
# Domain Status: clientTransferProhibited https://www.icann.org/epp#clientTransferProhibited
# Domain Status: clientUpdateProhibited https://www.icann.org/epp#clientUpdateProhibited
# Domain Status: serverDeleteProhibited https://www.icann.org/epp#serverDeleteProhibited
# Domain Status: serverTransferProhibited https://www.icann.org/epp#serverTransferProhibited
# Domain Status: serverUpdateProhibited https://www.icann.org/epp#serverUpdateProhibited
# Registry Registrant ID:
# Registrant Name: Domain Admin
# Registrant Organization: Meta Platforms, Inc.
# Registrant Street: 1601 Willow Rd
# Registrant City: Menlo Park
# Registrant State/Province: CA
# Registrant Postal Code: 94025
# Registrant Country: US
# Registrant Phone: +1.6505434800
# Registrant Phone Ext:
# Registrant Fax:
# Registrant Fax Ext:
# Registrant Email: domain@fb.com
# Registry Admin ID:
# Admin Name: Domain Admin
# Admin Organization: Meta Platforms, Inc.
# Admin Street: 1601 Willow Rd
# Admin City: Menlo Park
# Admin State/Province: CA
# Admin Postal Code: 94025
# Admin Country: US
# Admin Phone: +1.6505434800
# Admin Phone Ext:
# Admin Fax:
# Admin Fax Ext:
# Admin Email: domain@fb.com
# Registry Tech ID:
# Tech Name: Domain Admin
# Tech Organization: Meta Platforms, Inc.
# Tech Street: 1601 Willow Rd
# Tech City: Menlo Park
# Tech State/Province: CA
# Tech Postal Code: 94025
# Tech Country: US
# Tech Phone: +1.6505434800
# Tech Phone Ext:
# Tech Fax:
# Tech Fax Ext:
# Tech Email: domain@fb.com
# Name Server: a.ns.facebook.com
# Name Server: b.ns.facebook.com
# Name Server: c.ns.facebook.com
# Name Server: d.ns.facebook.com
# DNSSEC: Unsigned Delegation
# Registrar Abuse Contact Email: abusecomplaints@registrarsafe.com
# Registrar Abuse Contact Phone: +1.6503087004
# URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
  • What is the registrant postal code for facebook.com?

94025

  • When was the facebook.com domain first registered (Format: DD/MM/YYYY)?

29/03/1997

whois microsoft.com
#    Domain Name: MICROSOFT.COM
#    Registry Domain ID: 2724960_DOMAIN_COM-VRSN
#    Registrar WHOIS Server: whois.markmonitor.com
#    Registrar URL: http://www.markmonitor.com
#    Updated Date: 2025-04-01T12:38:29Z
#    Creation Date: 1991-05-02T04:00:00Z
#    Registry Expiry Date: 2026-05-03T04:00:00Z
#    Registrar: MarkMonitor Inc.
#    Registrar IANA ID: 292
#    Registrar Abuse Contact Email: abusecomplaints@markmonitor.com
#    Registrar Abuse Contact Phone: +1.2086851750
#    Domain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited
#    Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
#    Domain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited
#    Domain Status: serverDeleteProhibited https://icann.org/epp#serverDeleteProhibited
#    Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited
#    Domain Status: serverUpdateProhibited https://icann.org/epp#serverUpdateProhibited
#    Name Server: NS1-39.AZURE-DNS.COM
#    Name Server: NS2-39.AZURE-DNS.NET
#    Name Server: NS3-39.AZURE-DNS.ORG
#    Name Server: NS4-39.AZURE-DNS.INFO
#    DNSSEC: unsigned
#    URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
# >>> Last update of whois database: 2026-01-11T14:07:34Z <<<

# For more information on Whois status codes, please visit https://icann.org/epp

# NOTICE: The expiration date displayed in this record is the date the
# registrar's sponsorship of the domain name registration in the registry is
# currently set to expire. This date does not necessarily reflect the expiration
# date of the domain name registrant's agreement with the sponsoring
# registrar.  Users may consult the sponsoring registrar's Whois database to
# view the registrar's reported date of expiration for this registration.

# TERMS OF USE: You are not authorized to access or query our Whois
# database through the use of electronic processes that are high-volume and
# automated except as reasonably necessary to register domain names or
# modify existing registrations; the Data in VeriSign Global Registry
# Services' ("VeriSign") Whois database is provided by VeriSign for
# information purposes only, and to assist persons in obtaining information
# about or related to a domain name registration record. VeriSign does not
# guarantee its accuracy. By submitting a Whois query, you agree to abide
# by the following terms of use: You agree that you may use this Data only
# for lawful purposes and that under no circumstances will you use this Data
# to: (1) allow, enable, or otherwise support the transmission of mass
# unsolicited, commercial advertising or solicitations via e-mail, telephone,
# or facsimile; or (2) enable high volume, automated, electronic processes
# that apply to VeriSign (or its computer systems). The compilation,
# repackaging, dissemination or other use of this Data is expressly
# prohibited without the prior written consent of VeriSign. You agree not to
# use electronic processes that are automated and high-volume to access or
# query the Whois database except as reasonably necessary to register
# domain names or modify existing registrations. VeriSign reserves the right
# to restrict your access to the Whois database in its sole discretion to ensure
# operational stability.  VeriSign may restrict or terminate your access to the
# Whois database for failure to abide by these terms of use. VeriSign
# reserves the right to modify these terms at any time.

# The Registry database contains ONLY .COM, .NET, .EDU domains and
# Registrars.
# Domain Name: microsoft.com
# Registry Domain ID: 2724960_DOMAIN_COM-VRSN
# Registrar WHOIS Server: whois.markmonitor.com
# Registrar URL: http://www.markmonitor.com
# Updated Date: 2025-04-01T12:38:29+0000
# Creation Date: 1991-05-02T04:00:00+0000
# Registrar Registration Expiration Date: 2026-05-03T00:00:00+0000
# Registrar: MarkMonitor, Inc.
# Registrar IANA ID: 292
# Registrar Abuse Contact Email: abusecomplaints@markmonitor.com
# Registrar Abuse Contact Phone: +1.2086851750
# Domain Status: clientUpdateProhibited (https://www.icann.org/epp#clientUpdateProhibited)
# Domain Status: clientTransferProhibited (https://www.icann.org/epp#clientTransferProhibited)
# Domain Status: clientDeleteProhibited (https://www.icann.org/epp#clientDeleteProhibited)
# Domain Status: serverUpdateProhibited (https://www.icann.org/epp#serverUpdateProhibited)
# Domain Status: serverTransferProhibited (https://www.icann.org/epp#serverTransferProhibited)
# Domain Status: serverDeleteProhibited (https://www.icann.org/epp#serverDeleteProhibited)
# Registrant Name: Domain Administrator
# Registrant Organization: Microsoft Corporation
# Registrant Street: One Microsoft Way,
# Registrant City: Redmond
# Registrant State/Province: WA
# Registrant Postal Code: 98052
# Registrant Country: US
# Registrant Phone: +1.4258828080
# Registrant Phone Ext:
# Registrant Fax: +1.4259367329
# Registrant Fax Ext:
# Registrant Email: admin@domains.microsoft
# Tech Name: MSN Hostmaster
# Tech Phone: +1.4258828080
# Tech Email: msnhst@microsoft.com
# Name Server: ns3-39.azure-dns.org
# Name Server: ns4-39.azure-dns.info
# Name Server: ns2-39.azure-dns.net
# Name Server: ns1-39.azure-dns.com
# DNSSEC: unsigned
# URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
# >>> Last update of WHOIS database: 2026-01-11T14:06:36+0000 <<<

# For more information on WHOIS status codes, please visit:
#   https://www.icann.org/resources/pages/epp-status-codes

# If you wish to contact this domain’s Registrant or Technical
# contact, and such email address is not visible above, you may do so via our web
# form, pursuant to ICANN’s Temporary Specification. To verify that you are not a
# robot, please enter your email address to receive a link to a page that
# facilitates email communication with the relevant contact(s).

# Web-based WHOIS:
#   https://domains.markmonitor.com/whois/contact/microsoft.com

# If you have a legitimate interest in viewing the non-public WHOIS details, send
# your request and the reasons for your request to whoisrequest@markmonitor.com
# and specify the domain name in the subject line. We will review that request and
# may ask for supporting documentation and explanation.

# The data in MarkMonitor’s WHOIS database is provided for information purposes,
# and to assist persons in obtaining information about or related to a domain
# name’s registration record. While MarkMonitor believes the data to be accurate,
# the data is provided "as is" with no guarantee or warranties regarding its
# accuracy.

# By submitting a WHOIS query, you agree that you will use this data only for
# lawful purposes and that, under no circumstances will you use this data to:
#   (1) allow, enable, or otherwise support the transmission by email, telephone,
# or facsimile of mass, unsolicited, commercial advertising, or spam; or
#   (2) enable high volume, automated, or electronic processes that send queries,
# data, or email to MarkMonitor (or its systems) or the domain name contacts (or
# its systems).

# MarkMonitor reserves the right to modify these terms at any time.

# By submitting this query, you agree to abide by this policy.

# MarkMonitor Domain Management(TM)
# Protecting companies and consumers in a digital world.

# Visit MarkMonitor at https://www.markmonitor.com
# Contact us at +1.8007459229
# In Europe, at +44.02032062220
# ----
  • Which city is the registrant based in?

Redmond

1768140683240

  • [OSINT] What is the name of the golf course that is near the registrant address for microsoft.com?

Bellevue Golf Course

  • What is the registered Tech Email for microsoft.com?

msnhst@microsoft.com

Dig

DNS (Domain Name System)

  • DNS = mengubah domain β†’ IP address
  • Contoh: google.com β†’ IP server Google
  • Supaya manusia nggak perlu menghafal IP

Urutan Resolusi DNS

  1. Hosts file (manual mapping, paling diprioritaskan)
  2. DNS cache lokal
  3. Recursive DNS server (ISP / Google / OpenDNS)
  4. Root Name Server
  5. TLD Server (.com, .co.uk, dll)
  6. Authoritative Name Server β†’ sumber data asli (IP dikirim balik)

Jenis DNS Server

  • Recursive β†’ mencarikan jawaban
  • Root β†’ tahu lokasi TLD
  • TLD β†’ tahu lokasi authoritative
  • Authoritative β†’ simpan DNS record domain

Tool: dig

  • Dig = query DNS manual
  • Contoh: 
    dig google.com
dig google.com @8.8.8.8
  • Bagian penting: ANSWER (isi IP)

TTL (Time To Live)

  • Menentukan berapa lama DNS disimpan di cache
  • Satuan: detik
  • Habis TTL β†’ DNS akan di-query ulang
dig <domain> @<dns-server-ip>
dig tryhackme.com @8.8.8.8
  • What is DNS short for?

Domain Name System

  • What is the first type of DNS server your computer would query when you search for a domain?

Recursive

  • What type of DNS server contains records specific to domain extensions (i.e. .com, .co.uk*, etc)*? Use the long version of the name.

Top-Level Domain

  • Where is the very first place your computer would look to find the IP address of a domain?

Hosts File

  • [Research] Google runs two public DNS servers. One of them can be queried with the IP 8.8.8.8, what is the IP address of the other one?

8.8.4.4

python3 << PY
print(24*3600)
86400
PY
  • If a DNS query has a TTL of 24 hours, what number would the dig query show?

86400

Mini Modules

Previous Page

Toolbox Vim

Next Page

On this page

Introductory NetworkingOSIOSI Model (7 Layer) – Ringkasan PentingLayer 7 – ApplicationLayer 6 – PresentationLayer 5 – SessionLayer 4 – TransportLayer 3 – NetworkLayer 2 – Data LinkLayer 1 – PhysicalEncapsulationEncapsulation (Pengiriman Data)Nama data di tiap layerDe-encapsulation (Penerimaan Data)The TCP/IP ModelTCP/IP Model – Ringkasan PentingLayer TCP/IP (4 layer)Kenapa OSI Masih Dipakai?Pemetaan OSI ↔ TCP/IPEncapsulationTCP (Transmission Control Protocol)Three-Way Handshake (Wajib sebelum TCP)Sejarah SingkatPingTracerouteWHOISDomain NamesWHOISDigDNS (Domain Name System)Urutan Resolusi DNSJenis DNS ServerTool: digTTL (Time To Live)
room