* Open your BackTrack or kali linux machine * GoTo Applications->Information Gathering->Network Analysis->SMTP Analysis * Choose smtp-user-enum * Execute: ./smtp-user-enum.pl -v -M RCPT -u email@example.com -t mail.example.org -v Verbose -M mode Method to user for username guessing (RCPT here) -u user Check if this user exists -t host SMTP server
DNSenum is a pentesting cool created to enumerate DNS info about domains. The purpose of Dnsenum is to gather as much information as possible about a domain. The program currently performs the following operations: 1) Get the host’s addresses (A record). 2) Get the namservers (threaded). 3) Get the MX record (threaded). 4) Perform axfr…Read more Enumerate DNS info about domains
WAFW00F – Web Application Firewall Detection Tool – identifies and fingerprints Web Application Firewall (WAF) products. To do its magic, WAFW00F does the following: > Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions. > If that is not successful, it sends a number of (potentially malicious) HTTP…Read more How to detect Web Application Firewalls
it is already pre-installed in kali and backtrack We are going to use nbtscan tool to enumeratate NetBIOS names. NBTscan is a program for scanning IP networks for NetBIOS name information. It sends NetBIOS status query to each address in supplied range and lists received information in human readable form. To install it in Ubuntu:…Read more NetBIOS name enumeration
> Open your Backtrack or any linux distribution. > Install dig if it is missing. (dig is pre-installed in BackTrack and kali ) > Execute: dig ANY example.com. @22.214.171.124 or use dig web interface.
Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,docx,pptx,xlsx) belonging to a target company. Metagoofil will perform a search in Google to identify and download the documents to local disk and then will extract the metadata with different libraries like Hachoir, PdfMiner? and others. With the results it will generate…Read more Information Gathering with Metagoofil
The information gathering steps of footprinting and scanning are the most importance before hacking. Good information gathering can make the difference between a successful penetration test and one that has failed to provide maximum benefit to the client. We can say that Information is a weapon, a successful penetration testing and a hacking process need…Read more Easy Information gathering with TheHarvester