• Yeni mesajlar

Menü

Giriş yap

---

Navigasyon

Uygulamayı yükle

Yükle

Daha fazla seçenek

Gece modu

Bize ulaşın

Kapat Menü

• TurkHackTeam International Forum
• TurkHackTeam Under Ground
• Web-Server Security

Çok eski bir web tarayıcısı kullanıyorsunuz. Bu veya diğer siteleri görüntülemekte sorunlar yaşayabilirsiniz..
Tarayıcınızı güncellemeli veya alternatif bir tarayıcı kullanmalısınız.

Active Information Gathering

• Konbuyu başlatan Gauloran
• Başlangıç tarihi 29 Kas 2020

Gauloran

Moderasyon Ekibi Lideri

7 Tem 2013

8,207

4

686

• 29 Kas 2020

• #1

• What is Active Information Gathering?
• Information Gathering with DNS Protocol
• What is the Dig Command and How to Use It?
• Nslookup
• What is Banner Capture and How to Use It?
• What is TRACEROUTE and How is it Used?
• What is TCPTRACEROUTE How to use it?
• What is URLCrazy How to use it?
• Finding a Host
• Information Gathering with Dmitry
• DNSMAP Tutorial
• Fierce Tutorial
• NMAP Tutorial

What is Active Information Gathering?

Active information gathering means direct communication with the target. It's the collection of information by examining the logs of the target.

Information Gathering with DNS Protocol

You can find out by using the "Nslookup" and "Dig" tools in Kali.

What is the Dig Command and How to Use It?

Dig is a tool for looking at the target site's DNS records.

It shows us the address records connected to the domain

Kod:

dig website address

"dig website name–t NS" command shows us NS (Name Server) records

Kod:

dig websitename -t NS

"Dig website name -t txt" command is used to see TXT records.

Kod:

dig websitename –t txt

"Dig website name –t MX" command shows us MX records.

Kod:

dig websitename -t MX

The "dig –x ip address" command offers us the old records of the site.

Kod:

dig –x ipaddress

Nslookup

Kod:

nslookup websiteaddress

What is Banner Capture and How to Use It?

Banner capture is used to get information about the version and system used in the target system. A request is sent to an open port of the target system and the system sends some values ​​to us. For this method, we can use applications such as NetCat, nTelnet, Nmap in Linux.

Kod:

nc –v websiteaddress 80

What is TRACEROUTE and How is it Used?

Traceroute is the command used to find out which hosts a packet passed through until it reaches its destination. It uses the ICMP protocol.

You can open "cmd" on Windows and use the code below.

Kod:

You can open "cmd" on Windows and use the code below.

I'll tell you from different country's website
tracert x site

As you can see, the package data came to us.

What is TCPTRACEROUTE How to use it?

TRACEROUTE uses the ICMP protocol. However, the method in TRACEROUTE does not work in some systems because the ICMP protocol is closed.

Kod:

tcptraceroute website's portnumber

What is URLCrazy How to use it?

It lists the domains similar to the target domain.

Kod:

urlcrazy site links -p

-p means popular and it searches popular search engines.

Finding a Host

it is the method used to find the host of the system.

Kod:

host “website address”

Information Gathering with Dmitry

Dmitry is the information gathering tool in Kali. It provides us with information such as e-mail, TCP port scanning, Whois.

With this code, it allows us to collect information about the website by making a general scan of the website and creating a file named result.txt on the desktop.

Kod:

dmitry -winsepfb -o /root/Masaüstü/sonuc.txt siteismi

it allows us to collect information about the website by making a general scan of the website and creating a file named result.txt on the desktop.

Kod:

dmitry -winsepfb -o /root/Masaüstü/sonuc.txt siteismi

This is the image from the text file.

DNSMAP Tutorial

DNSMAP is used to learn the subdomains of the intermediary site.

Kod:

dnsmap websiteaddress

Fierce Tutorial

Fierce is a tool for DNS zone transfer and subdomain detection.

Kod:

fierce –dns websiteaddress

NMAP Tutorial

NMAP is a security scanner. It maps the scanned system and it can determine the position of running services. It shows the open ports of the system, which software the system is using, the physical device types, etc.

It provides a port number, port information, service information regarding port number.

Kod:

nmap ıpaddress

For UDP scanning

Kod:

nmap -sU ipaddress

For TCP scanning

Kod:

nmap -sT ipaddress

You can use the parameters, but they take a really long time and make the internet very slow.

Kod:

nmap -sS -F ipaddress

It will scan the 100 most used ports.

Kod:

nmap -sS -px ipaddress

You must write the port number instead of X. It'll only scan the port that you typed.

Source: https://www.turkhackteam.org/web-server-guvenligi/1827004-aktif-bilgi-toplama-whitered.html
Çevirmen/Translator Gauloran​

 

Cevap yazmak için giriş yap yada kayıt ol.

Paylaş:

Facebook Twitter Telegram Reddit E-posta Paylaş Link

• TurkHackTeam International Forum
• TurkHackTeam Under Ground
• Web-Server Security

Turkhackteam.org internet sitesi 5651 sayılı kanun’un 2. maddesinin 1. fıkrasının m) bendi ile aynı kanunun 5. maddesi kapsamında "Yer Sağlayıcı" konumundadır. İçerikler ön onay olmaksızın tamamen kullanıcılar tarafından oluşturulmaktadır. Turkhackteam.org; Yer sağlayıcı olarak, kullanıcılar tarafından oluşturulan içeriği ya da hukuka aykırı paylaşımı kontrol etmekle ya da araştırmakla yükümlü değildir. Türkhackteam saldırı timleri Türk sitelerine hiçbir zararlı faaliyette bulunmaz. Türkhackteam üyelerinin yaptığı bireysel hack faaliyetlerinden Türkhackteam sorumlu değildir. Sitelerinize Türkhackteam ismi kullanılarak hack faaliyetinde bulunulursa, site-sunucu erişim loglarından bu faaliyeti gerçekleştiren ip adresini tespit edip diğer kanıtlarla birlikte savcılığa suç duyurusunda bulununuz.