Category: Tutorials

Footprinting a Target using Recon-ng Recon-ng is a web reconnaissance framework with independent modules and database interaction that provides an environment in which open-source web- based reconnaissance can be conducted. Here, we will use Recon-ng to perform network reconnaissance, gather personnel information, and gather target information from social networking sites. Here, we will consider www.airbnb.com…

Perform Network Tracerouting in Windows and Linux Machines The route is the path that the network packet traverses between the source and destination. Network tracerouting is a process of identifying the path and hosts lying between the source and destination. Network tracerouting provides critical information such as the IP address of the hosts lying between…

Locate the Network Range Network range information assists in creating a map of the target network. Using the network range, you can gather information about how the network is structured and which machines in the networks are alive. Further, it also helps to identify the network topology and access the control device and operating system…

Perform Reverse DNS Lookup using Reverse IP Domain Check and DNSRecon DNS lookup is used for finding the IP addresses for a given domain name, and the reverse DNS operation is performed to obtain the domain name of a given IP address. Here, we will perform reverse DNS lookup using you get signal’s Reverse IP…

Gather DNS Information using nslookup Command Line Utility and Online Tool nslookup is a network administration command-line utility, generally used for querying the DNS to obtain a domain name or IP address mapping or for any other specific DNS record. This utility is available both as a command-line utility and web application. Here, we will…

Perform Whois Lookup using DomainTools Here, we will gather target information by performing Whois lookup using DomainTools Open Mozilla Firefox. In the address bar of the browser place your mouse cursor, type http://whois.domaintools.com and press Enter. The Whois Lookup website appears, as shown in the screenshot Now, in the Enter a domain or IP address……

Gather Information about a Target by Tracing Emails using eMailTrackerPro The email header is a crucial part of any email and it is considered a great source of information for any ethical hacker launching attacks against a target. An email header contains the details of the sender, routing information, addressing scheme, date, subject, recipient, etc.…

Gather a Wordlist from the Target Website using CeWL The words available on the target website may reveal critical information that can assist in performing further exploitation. CeWL is a ruby app that is used to spider a given target URL to a specified depth, optionally following external links, and returns a list of unique…

Gather Information About a Target Website using GRecon GRecon is a Python tool that can be used to run Google search queries to perform reconnaissance on a target to find subdomains, sub- subdomains, login pages, directory listings, exposed documents, and WordPress entries. GRecon (Greei-Conn) is a simple python tool that automates the process of Google…

Gather Information about a Target Website using Photon Photon is a Python script used to crawl a given target URL to obtain information such as URLs (in-scope and out-of-scope), URLs with parameters, email addresses, social media accounts, files, secret keys and subdomains. The extracted information can further be exported in the JSON format. Open kali…