diff --git a/scripts/dns-nsec-enum.nse b/scripts/dns-nsec-enum.nse
index 54cdd40a8..9f278c49f 100644
--- a/scripts/dns-nsec-enum.nse
+++ b/scripts/dns-nsec-enum.nse
@@ -13,7 +13,8 @@ increased indentation.
 The NSEC response record in DNSSEC is used to give negative answers to
 queries, but it has the side effect of allowing enumeration of all
 names, much like a zone transfer. This script doesn't work against
-servers that use NSEC3 rather than NSEC.
+servers that use NSEC3 rather than NSEC; for that, see
+<code>dns-nsec3-enum</code>.
 ]]
 
 ---
diff --git a/scripts/dns-nsec3-enum.nse b/scripts/dns-nsec3-enum.nse
index dc6bb8970..46d8f508f 100644
--- a/scripts/dns-nsec3-enum.nse
+++ b/scripts/dns-nsec3-enum.nse
@@ -44,6 +44,9 @@ k7i4ekvi22ebrim5b6celtaniknd6ilj vulpix.example.com.
 found 2 private NSEC3 names (25%) using 35017190 hash computations
 </code>
 
+Use the <code>dns-nsec-enum</code> script to handle servers that use NSEC
+rather than NSEC3.
+
 References:
 * http://dnscurve.org/nsec3walker.html
 ]]