Post cover image
Domain Hierarchy

June 24, 2026

Demystifying the Internet’s Address Book: Why You Don’t Have to Memorize 10.10.10.10

Imagine if, every time you wanted to order a late-night burrito or check your bank account, you had to memorize a string of random numbers…

By Hassan Bilal Siddiqui

3 min read

Imagine if, every time you wanted to order a late-night burrito or check your bank account, you had to memorize a string of random numbers like 185.199.108.153. Your brain would probably short-circuit by lunchtime.

Thankfully, we don't live in that dystopian timeline. Instead, we type in friendly names like tryhackme.com or google.com. But behind the scenes, a digital unsung hero is doing the heavy lifting to translate our human words into computer-speak.

Welcome to the Domain Name System (DNS) — the internet's ultimate address book.

Let's dive into a beginner-friendly breakdown of how DNS works, why it matters, and how you can query it like a seasoned hacker.

What is DNS, Anyway?

Every device connected to the internet has a unique identifier known as an IP (Internet Protocol) address. Think of it like your house's physical mailing address. A standard IPv4 address looks like four sets of numbers ranging from 0 to 255, separated by periods (e.g., 10.10.10.10). In tech terms, these four sections are called octets because they stem from 8-bit binary notation.

Because humans are notoriously bad at remembering strings of digits, DNS bridges the gap. It maps a memorable domain name directly to a machine-readable IP address.

None

Anatomy of a Domain Name: The Hierarchy

Domain names aren't just random strings of text; they follow a strict hierarchical structure from right to left.

None

1. Top-Level Domains (TLDs)

The furthest right-hand part of a domain name (like the .com in tryhackme.com) is the TLD. There are two main flavors:

  • gTLDs (Generic): Historically meant to show a site's purpose (e.g., .com for commercial, .org for organizations, .edu for education). Today, there's a massive influx of fun ones like .online, .club, and .biz.
  • ccTLDs (Country Code): Used for geographical purposes (e.g., .ca for Canada or .co.uk for the United Kingdom).

2. Second-Level Domains (SLDs)

This is the unique name you actually register (the tryhackme part). It's limited to 63 characters, can only use letters, numbers, and hyphens, and cannot start or end with a hyphen.

3. Subdomains

Sitting to the left of the SLD, subdomains help organize different sections of a website (like admin.tryhackme.com or store.tryhackme.com). While you can chain multiple subdomains together, the entire domain name must stay under 253 characters.

💡 Hackers Note: Understanding subdomains is crucial for web hacking and bug hunting, especially when analyzing cookies or mapping out a target's attack surface!

The DNS Cheat Sheet: Record Types

DNS doesn't just point to websites; it handles email, security verifications, and more using different record types:

  • A Records: Maps a domain to an IPv4 address. (The bread and butter of DNS).
  • AAAA Records (Quad A): Maps a domain to an IPv6 address.
  • CNAME (Canonical Name): Aliases one domain name to another. For example, store.tryhackme.com might point to shops.shopify.com. It's a friendly relabeling trick!
  • MX (Mail Exchange) Records: Tells the internet where to deliver emails for that domain. These come with a priority value (e.g., 30). If the main server goes down for patching, email gets routed to a backup server with a lower priority.
  • TXT (Text) Records: Free-text fields used for spam prevention (proving a server is authorized to send email) or verifying domain ownership for third-party services.

The Great DNS Journey: What Happens When You Press 'Enter'?

When you type a URL into your browser, a high-speed digital scavenger hunt begins.

None
  1. The Local Cache: Your computer checks its local memory. Have you visited this site recently? If yes, the journey ends.
  2. The Recursive Resolver: If it's not in the local cache, your computer asks a Recursive DNS server (usually provided by your Internet Service Provider, or ISP). Popular sites like Facebook or Google are usually cached right here.
  3. The Root Servers: Still no answer? The recursive server reaches out to the Root Servers — the backbone of the internet. The root server doesn't know the IP, but it knows who handles the .com TLD.
  4. The TLD Server: The root sends the request to the .com TLD server, which redirects the query to the specific Authoritative Name Server responsible for that exact domain.
  5. The Authoritative Server: This server holds the actual master records. It hands over the IP address, which travels all the way back to your computer. Your computer saves it locally using a TTL (Time to Live) value — a countdown timer in seconds that dictates how long to cache the record before asking again.

Final Thoughts

DNS is the invisible glue holding the user-friendly web together. Whether you are building a personal portfolio website to boost your resume (highly recommended!), hunting for bugs, or just trying to watch a video, DNS is working quietly in milliseconds to make it happen.

Until next time… Happy Hacking!