SMTP Users enumeration

* Open your BackTrack or kali linux machine * GoTo Applications->Information Gathering->Network Analysis->SMTP Analysis * Choose smtp-user-enum * Execute: ./smtp-user-enum.pl -v -M RCPT -u info@example.org -t mail.example.org -v Verbose -M mode Method to user for username guessing (RCPT here) -u user Check if this user exists -t host SMTP server

Advertisements

Enumerate DNS info about domains

DNSenum is a pentesting cool created to enumerate DNS info about domains. The purpose of Dnsenum is to gather as much information as possible about a domain. The program currently performs the following operations: 1) Get the host’s addresses (A record). 2) Get the namservers (threaded). 3) Get the MX record (threaded). 4) Perform axfr…Read more Enumerate DNS info about domains

How to detect Web Application Firewalls

WAFW00F – Web Application Firewall Detection Tool – identifies and fingerprints Web Application Firewall (WAF) products. To do its magic, WAFW00F does the following: > Sends a normal HTTP request and analyses the response; this identifies a number of WAF solutions. > If that is not successful, it sends a number of (potentially malicious) HTTP…Read more How to detect Web Application Firewalls

NetBIOS name enumeration

it is already pre-installed in kali and backtrack We are going to use nbtscan tool to enumeratate NetBIOS names. NBTscan is a program for scanning IP networks for NetBIOS name information. It sends NetBIOS status query to each address in supplied range and lists received information in human readable form. To install it in Ubuntu:…Read more NetBIOS name enumeration

Information Gathering with Metagoofil

Metagoofil is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,docx,pptx,xlsx) belonging to a target company. Metagoofil will perform a search in Google to identify and download the documents to local disk and then will extract the metadata with different libraries like Hachoir, PdfMiner? and others. With the results it will generate…Read more Information Gathering with Metagoofil

Easy Information gathering with TheHarvester

The information gathering steps of  footprinting  and scanning are the most importance before hacking. Good information gathering can make the difference between a successful penetration test and one that has failed to provide maximum benefit to the client. We can say that Information is a weapon, a successful penetration testing and a hacking process need…Read more Easy Information gathering with TheHarvester