Perform a reverse IP lookup to find all
A records associated with an IP address. The results can pinpoint virtual hosts being served from a web server. Information gathered can be used to expand the attack surface when identifying vulnerabilities on a server.
What is a Reverse IP lookup?
A web server can be configured to server multiple virtual hosts from a single IP address. This is a common technique in shared hosting environments in particular. It is also common in many organizations and can be an excellent way to expand the attack surface when going after a web server. If for example your primary target site appears to be secure you may be able to gain access to the underlying operating system by attacking a less secure site on the same server, thereby bypassing the security controls of the target site.
How is the DNS data queried?
The bulk of the data for the reverse IP lookup tool comes from the excellent scans.io project. Other Open Source Intelligence Sources include Bing queries using the IP address query
ip:xxx.xxx.xxx.xxx. The DNS
A records data totals 54G of plain text DNS records. This reverse IP lookup searches the data finding all records that match the IP address of the query.
Reverse IP Lookup API
An easy to use simple API for quick access to the database. Use
python or any web request against the API url below to receive the results in plain text format.
The API is designed to be used for ad-hoc recon tasks and not for bulk queries. All our IP Tools are limited to 100 (total) requests per day.
Discover, Explore, Learn.
Find out More
I want to Secure My Systems