Passive Footprinting/Information Gathering - System Security

Bursihido

said:
This is simple perl banner grabber for port 80 i made, its really just the basic stuff, but it can be modified ( i can do banner grabber for more services and mass one too, if you want, just let me know :))
#!/usr/bin/perl -w
use strict;
use LWP;

my $url = \"http&#58;//www&#46;\"&#46;$ARGV&#91;0&#93;;

my $browser = LWP&#58;&#58;UserAgent-&gt;new-&gt;get($url);

print $url&#46;\" \"&#46;$browser-&gt;header(\"Server\"), \"\n\";

Thanks :)[hr]
I use this site for footprinting http://www.dirk-loss.de/onlinetools.htm :)

Flashlight

Thanks bro

Desert Fox ™

Thanks in advanced

Xin R

White Hat by day, Grey Hat by Night

khaos

thanks in advance

InFamous

Excellent guide Xinapse, Oh and by the way if any of you have jailbroken iTouch's check around Cydia they have some nice mobile network mapping tools.

D4rk357

man ..i have to reply first to see posts :|

Reader

Thanks in advance

Hardcore-Gabber

Thanks ... Verry interesting post

Xeplict

I\'ll look trough this now
hope it\'s good

[Deleted User]

Will take a look at this :)
Thanks
Edit- Just skimmed through it and im already loving it. Thanks a alot for the post.

[Deleted User]

Tiene buena pinta, a ver que tal.

looks good, to see just this...

[Deleted User]

I'll be sure to read through this and see what it's about.

Thanks.

Xin

Hopey you guys liked it , it took me a while

mandi

can't wait to see the thread...

vegito2010

Thanks in Advance!

tarunagg888

nice info...!!
thnks...!!

McKittrick

i saw this and wanted to add a few things if i may. i noticed some people mentioned they use traceroute from THEIR OWN MACHINE, and some using online tools

i have always believed that to remain cloaked while enumerating your target is ALWAYS the best method, if available. i always ping, trace, lookup, etc from SAMSPADE/etc type web sites that use enumeration tools. why offer up your IP to the target you are pursuing?

last thing i wanted to mention that was left out but is a great resource few people use or even know about are public Looking Glass BGP route reflectors. you can find them sprinkled about on the web if you do a search. i beleive one i used to use was route-server.net or something. Looking Glasses are open to the public and are basically BGP enabled routers that are set to USER mode level and are available for business/public users to view what routes an ISP provides or is advertising. they reflect the routes that are being offered (the beauty of this is sometimes, through misconfiguration, they leak INTERNAL routes as well!)

not only do you get to "play" on a high-end border router (usually a 7200 series), you can also use alot of the commands it offers in USER mode level, so you can actually practice CISCO console commands and switches. keep in mind, you are only able to view items, you cannot change anything, since you will be in non-exec mode, but still it is a valuable tool if you know what to look for

just wanted to throw that out there

example below is a BGP looking glass query for an IP in Minneapolis:
***********************************************************************

sh ip bgp 24.224.5.6
BGP routing table entry for 24.224.0.0/21, version 439436259
Paths: (2 available, best #2, table Default-IP-Routing-Table)
Not advertised to any peer
3549 22773 10821
205.171.202.219 (metric 858) from 205.171.200.52 (205.171.200.52)
Origin IGP, localpref 80, valid, internal
Community: 209:888
Originator: 205.171.202.219, Cluster list: 205.171.200.51, 205.171.0.219
3549 22773 10821
205.171.202.219 (metric 858) from 205.171.200.51 (205.171.200.51)
Origin IGP, localpref 80, valid, internal, best
Community: 209:888
Originator: 205.171.202.219, Cluster list: 205.171.200.51, 205.171.0.219
**************************************************************************

Xin

Updates information and made some changes

Howdy, Stranger!

Top Posters

Who's Online (3)