Hacking Beyond .com - Enumerating Private Top-Level Domain (TLD)
Google News, Thursday, August 15th, 2024
My story started a few months ago, when I performed a red team assessment for a major retail company.
During the Open Source Reconnaissance (OSINT) phase, I reviewed the SSL certificates that included the client name. In these certificates I identified that the client owned its own top-level domain (TLD).
A TLD is the last part of a domain name, the letters that come after the final dot. For example, in the domain name "google.com," the TLD is ".com". Companies such as Google own many TLDs, including .goog, .go, and .google. Google manages all of those TLDs and the domains underneath them (for example, "site.goog").