Online tools
Explore online vulnerability for servers and IoT devices : https://www.shodan.com
get dumped leaked information : https://www.pastebin.com
Text and source code leak: https://github.com
online Swiss Army knife tools: https://www.dnsstuff.com
also use the url: http://searchdns.netcraft.com you can find target website information
whois domain-name.com ,because every domain name is registered in a public WHOIS database , depending on the database that is queried.it will reveal a lot of juicy information . including name ,phone number ,Emails address Physical DNS and so on .
dnsenum domain-name.com ,DOMAIN name System is a database that resolves domain name ,wen can use it gather information such as identigy new domain names or subdomians associated target .and find services (for example FTP ,SSL ,Telnet)
these commands may userful
denenum domain_name.com
fierce -dns domain_name.com
dnsrecon -w -d domain_name.com -t axfr (-w it means deep , -t stand for type axfr it's all DNS server )
Gatering email address :theharvester script is a Python tool/script that can gather the target email address
Active information gathering services enumeration ,a lot of wegit can be used .scan ,advanced_ip_scanner nmap
the nmap command :
nmap -sn [ip ]
netdiscover -r [ip]
how to identifying opne ports/services ,we usually use ping ,but is not in here : we can use TCP scan -interanet
nmap -sS -sV -sC --version-all -o --osscan-guess -T4 --reason --open -p--Pn -v [ip]
UDP scan -intranet : nmap -sU --top-ports 1000 -Pn -v [ip]
TCP scan -from the internet: nmap -sS -T2 --top--ports 1000 -Pn -v [ip]
nmap -sU --top-ports 100 -Pn -v [ip]
Server probing and enumeration to find 21 port server FTP we can use command
nmap -sV -p 21 -Pn -T5 --host-timeout 15ms --script=ftp* -v [ip]
ofcourse the Credential burte force: hydra -t 10 -V -f -L [users dic file path ] -P [passwords dic file path] ftp://[ip]
and other ports also user the way .
最新文章
- datagrid
- javascript中的prototype(原型)认识
- 【JAVA】JMX简单使用方法
- spring源码学习之路---IOC初探(二)
- nginx服务器中的安全配置
- 使用C++11安全的在线程中控制UI
- mongodb and .net
- 地图坐标Base64转换数字坐标
- 关于php文件读取的一些学习记录
- java.lang.IllegalArgumentException: Result Maps collection already contains value for
- 将本地代码上传到github
- vue移动端弹框组件,vue-layer-mobile
- 2019年春季学期第三周作业 ----PTA作业
- XenServer多网卡绑定
- 微信redirect_uri域名与后台配置不一致,错误代码10003
- HBase 笔记1
- HAProxy(二):HAProxy的ACL规则实现智能负载均衡详解与示例
- C# FTP常规方法
- mothur summary.seqs 统计fasta文件中每条序列的长度
- 数据分页c#