A reverse IP lookup is a technique used to identify hostnames or domain names associated with a specific IP address by querying DNS pointer (PTR) records. This process is the inverse of a standard DNS lookup, where a domain name is resolved to an IP address. Reverse IP lookups are commonly used to determine the hostname linked to an IP address, which can be helpful in network troubleshooting, security investigations, and email deliverability checks.

The lookup works by searching for PTR records in the DNS system, which map an IP address to a domain name. For IPv4 addresses, the reverse lookup typically uses the in-addr.arpa domain, while IPv6 addresses use ip6.arpa. If a PTR record exists for the IP address, the reverse lookup will return the associated hostname; however, not all IP addresses have such records, so results may be absent.

Reverse IP lookups are particularly useful in identifying virtual hosts sharing the same IP address, a common practice in shared web hosting environments. This can help security professionals expand the attack surface during reconnaissance by discovering potentially less secure websites hosted on the same server as a primary target. Additionally, it can assist in identifying spam sources, tracking malicious activity, or checking the reputation of websites hosted on the same server.

Several tools and methods are available for performing reverse IP lookups. On Linux and Unix-like systems, commands such as nslookup, dig, and host can be used. For example, the nslookup command can be run with an IP address to retrieve the associated hostname. On Windows, the nslookup command-line utility is commonly used for reverse DNS lookups. Additionally, online tools like HackerTarget.com, WhatIsMyIP.com, MXToolbox, and NordVPN offer free reverse IP lookup services to find domains associated with an IP address.

Some services also support bulk queries or API access for large-scale operations, such as querying entire CIDR blocks (up to /24) or retrieving up to 10 million results via an API. These tools are valuable for security analysts, network defenders, and researchers conducting open-source intelligence (OSINT) investigations.

🌐
MxToolBox
mxtoolbox.com › ReverseLookup.aspx
Reverse IP Lookup - MxToolbox
The Reverse Lookup tool will do a reverse IP lookup. If you type in an IP address, we will attempt to locate a dns PTR record for that IP address. You can then click on the results to find out more about that IP Address. Please note that in general, your ISP must setup and maintain these Reverse DNS records (i.e.
🌐
DNS Checker
dnschecker.org › reverse-dns.php
Reverse IP Lookup - Reverse DNS Lookup
Reverse IP checker finds the real hostname behind an IP address. Enter an IP to perform reverse lookup to find the hostname of an IP.
Discussions
What's your go-to for finding IP address information?
I like ipinfo.io for getting full ISP data. Sometimes they have business/organizational records attributed that ipinfo will show you, if the ISP had designated as much detail. Also sometimes if you have a large netblock, the ISP may also have provided a smaller netblock designation for that IP within their greater netblock that ipinfo will show you, but other tools wouldn't. I then use something like shodan or binaryedge to look at the whole netblock to see if any sort of certain business/industry/operation may be attributed to it. More on reddit.com
🌐 r/OSINT
16
28
August 1, 2021
Reverse Lookups

These are both private services but the absolute best 2 are:

  • Farsight DNSDB (http://dnsdb.info) [Free for independent researchers, expensive comercially]

  • DomainTools (http://domaintools.com) [No free plans, and quite expensive if you're independent]

More on reddit.com
🌐 r/AskNetsec
6
3
May 5, 2013
Reverse IP Lookup Tool
I went there, entered one ip, got results, got distracted for 5 minutes, came back and tried a second IP and it says it thinks I'm a bot, try again in a minute... after being idle for 5 minutes... More on reddit.com
🌐 r/webdev
6
1
June 21, 2019
What's your go to resource for finding IP address information?
whois on the command line, mixed with a traceroute, and an AS lookup if really necessary. More on reddit.com
🌐 r/networking
80
110
January 29, 2016
Videos
🌐 youtube.com
How to setup DNS Reverse Lookup Zones
12:48
🌐 YouTube
🔍 Reverse IP Address Lookup Explained | Find Hidden Domains ...
August 27, 2025
04:37
🌐 YouTube
#ONPASSIVE BLOG VIDEO : What is Reverse IP Lookup and how its useful ...
May 25, 2021
00:54
🌐 YouTube
What is reverse IP Lookup? How much do you know about domains and IP?
November 8, 2022
🌐 youtube.com
Perform Reverse DNS Lookup using Reverse IP Domain ...
02:51
🌐 YouTube
Bulk Reverse DNS Lookup Tool - adver.tools - YouTube
December 7, 2021
View all
View all
🌐
WhatIsMyIP.com
whatismyipaddress.com › home › ip lookup
Instant IP Address Lookup
October 18, 2019 - Lookup details about an IP address including location, ISP, hostname, type, proxy, blacklist status and more. Trace, Track and Locate an IP address.
🌐
Hackertarget
hackertarget.com › home › reverse ip lookup
Reverse IP Lookup, Find Hosts Sharing an IP | HackerTarget.com
April 27, 2025 - The query simply searches through ... for a reverse IP lookup. In the case of a reverse dns lookup, the IP address is checked against a DNS server to see if there is a PTR record associated with that IP address....
🌐
NordVPN
nordvpn.com › ip-lookup
Free IP address lookup tool — IP address geolocation | NordVPN
January 8, 2025 - The reverse IP finder allows you to find all the domains associated with a specific IP address. For example, you can check what other websites are stored on the server you use to avoid bad neighbors.
🌐
ViewDNS.info
viewdns.info › reverseip
Reverse IP Lookup - ViewDNS.info
Takes a domain or IP address and does a reverse lookup to quickly shows all other domains hosted from the same server. Useful for finding phishing sites or identifying other sites on the same shared hosting server.
🌐
Domaintools
reverseip.domaintools.com
Reverse IP Lookup - All Names Hosted at an IP - DomainTools
Reverse IP Lookup lets you discover all the domain names (in the primary TLDs) hosted on any given IP address.
Find elsewhere
🌐
IP Location
iplocation.io
IP Address Lookup - Check Location of Your Public IP
Reverse IP Lookup · Local IPv6 Address Generator · IPv6 CIDR to Range Calculator · IPv6 Range to CIDR Calculator · ASN WHOIS Lookup · IP WHOIS Lookup · My Location · DNS Tools · MX Lookup · DNS Lookup · NS lookup · DNS Health Checker · DMARC Validation ·
🌐
WhoisXML API
reverse-ip.whoisxmlapi.com › lookup
Reveal the domain names sharing an IP address - Reverse IP
Reveal the domain names sharing an IP address and their first-seen and last-seen dates on the DNS. Test our Reverse IP Lookup now.
🌐
DNSlytics
dnslytics.com
Online investigation tool - Reverse IP, NS, MX, WHOIS and Search Tools
DNSlytics provides the ultimate online investigation tool. See detailed information about every IP address, domain name and provider. Perform network tests like DNS lookup, email testing and WHOIS lookups.
🌐
Server Fault
serverfault.com › questions › 41064 › whats-the-command-line-utility-in-windows-to-do-a-reverse-dns-look-up
domain name system - What's the command-line utility in Windows to do a reverse DNS look-up? - Server Fault
Top answer
1 of 14
287
ping -a w.x.y.z

Should resolve the name from the IP address if the reverse lookup zone has been set up properly. If the reverse lookup zone does not have an entry for the record, the -a will just ping without a name.

2 of 14
151
nslookup <ip>

Does what you're looking for. It will tell you the server you're querying and the result.

For example:

c:\>nslookup 192.168.101.39
Server: dns1.local
Address: 192.168.101.24

Name: enigma.local
Address: 192.168.101.39
🌐
nixCraft
cyberciti.biz › nixcraft › howto › freebsd › reverse nslookup command
Reverse nslookup Command - nixCraft
September 12, 2024 - Now, you can run reverse ip lookup for 75.126.153.206 as follows: $ nslookup 75.126.153.206 Sample outputs:
🌐
Geolocation
geolocation.com
Geolocate the Location of an IP Address | Geolocation
Free service to geolocate a visitor\'s IP location, such as country, city, latitude, longitude, ZIP code, time zone, ISP, mobile data, usage type and many more.
🌐
Uptimia
uptimia.com › home › questions › how to use nslookup command for reverse ip lookup?
How to Use nslookup Command for Reverse IP Lookup?
July 11, 2024 - To perform a reverse DNS lookup using nslookup, open a command prompt and type: ... This command will automatically convert the IP address to the in-addr.arpa format and search for the PTR record.
🌐
NSLookup
nslookup.io › reverse-ip-lookup
Reverse IP Lookup
Find the domain name that is connected to an IP address. Check if the any websites are hosted on an IP by doing a reverse DNS lookup.
🌐
YouGetSignal
yougetsignal.com › tools › web-sites-on-web-server
Reverse IP Lookup - Find Other Web Sites Hosted on a Web Server
This tool performs a reverse IP domain check which takes the domain name or IP address of a web server and searches for other sites known to be hosted on that same web server. Data is gathered from search engine results, which is not guaranteed to be complete.
🌐
WhatIsMyIP.com®
whatismyip.com › ip-address-lookup
IP Address Lookup - Instantly Find IP Address Location
IP Hostname Lookup · Data Breach Check · Reverse DNS Lookup · Email Header Analyzer · Screen Resolution · Use our free IP address lookup tool to trace the geographical location of any IP address, whether it's your IP address or someone else's. Learning how to look up an IP is simple; if you're tracking suspicious activity, solving network issues, or just curious, this tool delivers fast, reliable insights.
🌐
WhatIsMyIP.com®
whatismyip.com › reverse-dns-lookup
Reverse DNS Lookup | Reverse IP Lookup Tool - WhatIsMyIP.com®
Enter an IP address to retrieve its associated domain name. ... Use the reverse DNS lookup tool to check DNS PTR records and determine the hostname of an IP address.
🌐
Microsoft Learn
learn.microsoft.com › en-us › windows-server › networking › dns › reverse-lookup
DNS Reverse Lookups in Windows and Windows Server | Microsoft Learn
This type of query expects an IP address as the resource data for the answered response. DNS also provides a reverse lookup process, enabling clients to use a known IP address during a name query and to look up a computer name based on its address.
🌐
Infrasos
infrasos.com › home › blog › how to use reverse dns lookup command on windows
How to Use Reverse DNS Lookup Command on Windows
July 22, 2024 - So, because the query is performed by a DNS server, the process is rightly called “Reverse DNS Lookup.” · Also Read How to Use NSLookup Command on Windows (Examples) Earlier, I mentioned that your computer queried a DNS server when you entered InfraSOS.com on the browser. The query process involves looking for a DNS server on the Internet that is “authoritative” for the name, InfraSOS.com. That DNS server holds the information that maps InfraSOS.com to its IP address in a record called “Host (A).” This record exists on the “Forward Lookup Zones” of a DNS server record.
Related queries
bulk reverse ip lookup
reverse dns lookup
reverse ip domain check
reverse ip lookup linux
reverse-ip lookup github
reverse ip lookup windows
reverse ip lookup cmd
free reverse ip lookup