Recopilando información con whois

whois

♥ O.S. Kali Linux

Analizo euskalert.net desde la shell.


$ whois euskalert.net

Whois Server Version 2.0

Domain names in the .com and .net domains can now be registered
with many different competing registrars. Go to http://www.internic.net
for detailed information.

Domain Name: EUSKALERT.NET
Registrar: ACENS TECHNOLOGIES, S.L.U.
Sponsoring Registrar IANA ID: 140
Whois Server: whois.interdomain.net
Referral URL: http://www.interdomain.es
Name Server: NS1.MONDRAGON.EDU
Name Server: NS2.MONDRAGON.EDU
Status: ok https://icann.org/epp#ok
Updated Date: 07-oct-2015
Creation Date: 31-oct-2006
Expiration Date: 31-oct-2016

>>> Last update of whois database: Thu, 15 Sep 2016 13:57:48 GMT <<<

For more information on Whois status codes, please visit https://icann.org/epp

NOTICE: The expiration date displayed in this record is the date the
registrar’s sponsorship of the domain name registration in the registry is
currently set to expire. This date does not necessarily reflect the expiration
date of the domain name registrant’s agreement with the sponsoring
registrar.  Users may consult the sponsoring registrar’s Whois database to
view the registrar’s reported date of expiration for this registration.

TERMS OF USE: You are not authorized to access or query our Whois
database through the use of electronic processes that are high-volume and
automated except as reasonably necessary to register domain names or
modify existing registrations; the Data in VeriSign Global Registry
Services’ (“VeriSign”) Whois database is provided by VeriSign for
information purposes only, and to assist persons in obtaining information
about or related to a domain name registration record. VeriSign does not
guarantee its accuracy. By submitting a Whois query, you agree to abide
by the following terms of use: You agree that you may use this Data only
for lawful purposes and that under no circumstances will you use this Data
to: (1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail, telephone,
or facsimile; or (2) enable high volume, automated, electronic processes
that apply to VeriSign (or its computer systems). The compilation,
repackaging, dissemination or other use of this Data is expressly
prohibited without the prior written consent of VeriSign. You agree not to
use electronic processes that are automated and high-volume to access or
query the Whois database except as reasonably necessary to register
domain names or modify existing registrations. VeriSign reserves the right
to restrict your access to the Whois database in its sole discretion to ensure
operational stability.  VeriSign may restrict or terminate your access to the
Whois database for failure to abide by these terms of use. VeriSign
reserves the right to modify these terms at any time.

The Registry database contains ONLY .COM, .NET, .EDU domains and
Registrars.

Domain Name: euskalert.net
Registry Domain ID:
Registrar WHOIS Server: whois.interdomain.net
Registrar URL: http://www.acens.com/
Updated Date: 2015-10-07T08:15:23Z
Creation Date: 2006-10-31T00:56:37Z
Registrar Registration Expiration Date: 2016-10-31T11:56:37Z
Registrar: acens Technologies, S.L.U.
Registrar IANA ID: 140
Registrar Abuse Contact Email: abuse@acens.com
Registrar Abuse Contact Phone:+34.911418583
Domain Status: ok http://www.icann.org/epp#ok
Registry Registrant ID:
Registrant Name: Mondragon Goi Eskola Politeknikoa, J.M.A., S.Coop
Registrant Organization:
Registrant Street: Loramendi 4
Registrant City: Arrasate
Registrant State/Province: Gipuzkoa
Registrant Postal Code: 20500
Registrant Country: ES
Registrant Phone: 943794700
Registrant Fax:
Registrant Email: amanterola@eps.mondragon.edu
Registry Admin ID:
Admin Name: Mondragon Goi Eskola Politeknikoa, J.M.A., S.Coop
Admin Organization: Mondragon Goi Eskola Politeknikoa, J.M.A., S.Coop
Admin Street: Loramendi,4
Admin City: Arrasate
Admin State/Province: GIPUZKOA
Admin Postal Code: 20500
Admin Country: ES
Admin Phone: +34.943794700
Admin Fax:
Admin Email: sistemak@eps.mondragon.edu
Registry Tech ID:
Tech Name: RESPONSABLE DE DNS
Tech Organization: RESPONSABLE DE DNS
Tech Street: JULIAN CAMARILLO 6
Tech City: MADRID
Tech State/Province: MADRID
Tech Postal Code: 28013
Tech Country: ES
Tech Phone: +34.913752300
Tech Fax:
Tech Email: dns_admin@corp.terra.es
Name Server: ns1.mondragon.edu
Name Server: ns2.mondragon.edu
URL of the ICANN WHOIS Data Problem Reporting System: http://wdprs.internic.net/
>>> Last update of WHOIS database:2015-10-07T08:15:23Z<<<
For more information on Whois status codes, please visit
https://www.icann.org/resources/pages/epp-status-codes-2014-06-16-en

acens’s WHOIS database is provided by acens Technologies for information
purposes only, proving information about or related to a domain name
registration record.
Acens makes this information available “as is,” and does not guarantee
its accuracy.
By submitting a WHOIS query, you agree that you will use this data only for
lawful purposes and that, under no circumstances will you use this data to:
(1) allow, enable, or otherwise support the transmission of mass unsolicited,
commercial advertising or solicitations via direct mail, electronic mail, or
by telephone; or (2) enable high volume, automated, electronic processes that
apply to acens (or its systems).  The compilation, repackaging,
dissemination or other use of this data is expressly prohibited without the
prior written consent of acens.
acens  reserves the right to modify these terms at any time. By
submitting this query, you agree to abide by these terms.
NOTE: THE WHOIS DATABASE IS A CONTACT DATABASE ONLY. LACK OF A DOMAIN RECORD


Otras herramientas online serían:

Atendiendo a la información que me muestra la shell con whois, me dirijo a https://whois.icann.org/, y obtengo lo siguiente:

https://whois.icann.org/en/lookup?name=euskalert.net

seleccion_001


Con estos datos resultaría complicado aplicar un poco de “ingeniería social”, por lo que hago otro whois, esta vez con una herramienta online: http://ping.eu/ns-whois/ y empleando la IP obtenida en el anterior post al hacer ping, la: 193.146.78.12

El resultado es el siguiente:

admin-c PA644-RIPE
tech-c JL1370-RIPE

Contacto Técnico:

person Jesus Lizarraga
address Mondragon Eskola Politeknikoa
address Loramendi, 4
address E-20500 Mondragon
address SPAIN
phone +34 943794700
fax-no +34 943791536
nic-hdl JL1370-RIPE

Contacto Administrativo:

person Pedro Amallobieta
address Mondragon Eskola Politeknikoa
address Loramendi, 4
address E-20500 Mondragon
address SPAIN
phone +34 943794700
fax-no +34 943791536
nic-hdl PA644-RIPE

¡Esto ya es otra cosa!

Como curiosidad pruebo el whois con la IP en la shell. El resultado es el deseado, y distinto al obtenido al emplear el dominio.

Me fijo en la primera línea: % This is the RIPE Database query service.

¡La consulta ha cambiado!

RIPE: https://www.ripe.net/

Consultas desde la shell: consultas ripe

Aclaración: En muchos casos, los particulares facilitan datos erróneos o incompletos para ocultar esos datos personales, pero lo cierto es que la normativa dice que el uso de datos falsos o incompletos no es aceptable y pueden anular el registro del dominio. Otra opción sería emplear un servicio de “Whois Privado” a la hora de realizar el registro (no serviría para todos, pero sí para los dominios de nivel superior genéricos (gTLD) gestionados por la ICANN como los .net, .com, etc) lo que en la mayoría de los casos supondría un coste añadido que habría que valorar en función del contenido al que apunte el dominio en cuestión.


♣ Reflexión: siempre hay algo más.


Anuncios

Responder

Introduce tus datos o haz clic en un icono para iniciar sesión:

Logo de WordPress.com

Estás comentando usando tu cuenta de WordPress.com. Cerrar sesión / Cambiar )

Imagen de Twitter

Estás comentando usando tu cuenta de Twitter. Cerrar sesión / Cambiar )

Foto de Facebook

Estás comentando usando tu cuenta de Facebook. Cerrar sesión / Cambiar )

Google+ photo

Estás comentando usando tu cuenta de Google+. Cerrar sesión / Cambiar )

Conectando a %s