β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ How Social Mapper open source smart tools work ?
But, "What if it can be done automatically and on a large scale with hundreds or thousands of people?"
π¦ Social Mapper runs through three phases:
> Phase 1- The tool is based on what you provide The input of creates a target list (consisting of name and picture). The list can be provided through a link in the CSV file, an image in the folder, or someone registered on LinkedIn on the company.
> Stage 2- Once the target is processed, the second stage of Social Mapper automatically starts online search for social media sites to obtain the target.Researchers recommend running the tool overnight via a good Internet connection, because searching can take more than 15 hours to get a list of 1,000 people and use a lot of bandwidth.
> After the third stage search, the third stage of Social Mapper starts generating reports, such as a spreadsheet that contains a link to the profile page of the target list, or a more intuitive HTML report that contains photos for quick inspection and verification results.
Written by Undercode
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ How Social Mapper open source smart tools work ?
But, "What if it can be done automatically and on a large scale with hundreds or thousands of people?"
π¦ Social Mapper runs through three phases:
> Phase 1- The tool is based on what you provide The input of creates a target list (consisting of name and picture). The list can be provided through a link in the CSV file, an image in the folder, or someone registered on LinkedIn on the company.
> Stage 2- Once the target is processed, the second stage of Social Mapper automatically starts online search for social media sites to obtain the target.Researchers recommend running the tool overnight via a good Internet connection, because searching can take more than 15 hours to get a list of 1,000 people and use a lot of bandwidth.
> After the third stage search, the third stage of Social Mapper starts generating reports, such as a spreadsheet that contains a link to the profile page of the target list, or a more intuitive HTML report that contains photos for quick inspection and verification results.
Written by Undercode
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ ABOUT SOCIAL MEDIA TRACKING :
What could go wrong?
1) Although the end result is ideal for promoting highly complex phishing activities or intelligence gathering, Trustwave said it will help security professionals and ethical hackers provide the same tools as bad guys to test customers' security.
2) However, because the tool is now available in open source, anyone including bad guys or intelligence agencies can reuse facial recognition technology to build their own monitoring tools to search for the large amount of data that has been collected. further outlines some evil uses of the social mapper.
3) Once you have mastered the end result, these uses are limited to "only your imagination", which shows that it can be used for:
π¦ ππΌππ πππΈβπ :
1) Create a fake social media profile for the "friends" target, and then send its link to downloadable malware or obtain credentials for landing pages.
The goal of spoofing is to disclose their emails and phone numbers through vouchers and offers to turn to "phishing, predatory or predatory."
2) Create custom phishing campaigns for each social media platform, make sure the target has an account, and make these more real by including their profile picture in the email. Then capture the password to reuse it.
3) Look at the photo of the target, find the badge of the employee visit card, and get familiar with the interior of the building.
Written by Undercode
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ ABOUT SOCIAL MEDIA TRACKING :
What could go wrong?
1) Although the end result is ideal for promoting highly complex phishing activities or intelligence gathering, Trustwave said it will help security professionals and ethical hackers provide the same tools as bad guys to test customers' security.
2) However, because the tool is now available in open source, anyone including bad guys or intelligence agencies can reuse facial recognition technology to build their own monitoring tools to search for the large amount of data that has been collected. further outlines some evil uses of the social mapper.
3) Once you have mastered the end result, these uses are limited to "only your imagination", which shows that it can be used for:
π¦ ππΌππ πππΈβπ :
1) Create a fake social media profile for the "friends" target, and then send its link to downloadable malware or obtain credentials for landing pages.
The goal of spoofing is to disclose their emails and phone numbers through vouchers and offers to turn to "phishing, predatory or predatory."
2) Create custom phishing campaigns for each social media platform, make sure the target has an account, and make these more real by including their profile picture in the email. Then capture the password to reuse it.
3) Look at the photo of the target, find the badge of the employee visit card, and get familiar with the interior of the building.
Written by Undercode
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ Detailed IP address summary
t.me/undercodeTesting
1) Classified IP address
Each type of address has another fixed-length field.
Network number: net-idβmarks the network to which the host (or router) is connected.
2) Host number: host-idβmarks that the host (or router)
two-level IP address can Expressed as:
IP address: = {<network number>, <host number>}
:: = stands for "defined as"
Class A address: network field number 1 byte 8 bits
Class B address: network field number 2 words Section 16-bit
class C address: Network field number 3 bytes 24 bits
π¦ Some important characteristics of
IP address 1): IP address is a hierarchical address structure, the benefits of two levels
First: When the IP address management means to assign IP addresses,
assigned network number only
host number obtained by the number of units of the network Discretionary
second: The destination host number only router connected
to a network packet forwarding numbers
so it can make The number of entries in the routing table is greatly reduced, thereby reducing the
storage space occupied by the routing table.
Third:
The network numbers in the IP addresses of hosts or routers in the same local area network must be the same.
Fourth: The router always has two or more IP addresses
. Each interface of the router has an IP address with a different network number.
Fifth: The resolution from the IP address to the hardware address is automatic. The user of the host I
do nβt know this process of address resolution.
As long as the host or router wants
to communicate with another host or router with a known IP address on the network, the ARP protocol will automatically
resolve the IP address to the link layer. Hardware address
π¦ Detailed IP address summary
t.me/undercodeTesting
1) Classified IP address
Each type of address has another fixed-length field.
Network number: net-idβmarks the network to which the host (or router) is connected.
2) Host number: host-idβmarks that the host (or router)
two-level IP address can Expressed as:
IP address: = {<network number>, <host number>}
:: = stands for "defined as"
Class A address: network field number 1 byte 8 bits
Class B address: network field number 2 words Section 16-bit
class C address: Network field number 3 bytes 24 bits
π¦ Some important characteristics of
IP address 1): IP address is a hierarchical address structure, the benefits of two levels
First: When the IP address management means to assign IP addresses,
assigned network number only
host number obtained by the number of units of the network Discretionary
second: The destination host number only router connected
to a network packet forwarding numbers
so it can make The number of entries in the routing table is greatly reduced, thereby reducing the
storage space occupied by the routing table.
Third:
The network numbers in the IP addresses of hosts or routers in the same local area network must be the same.
Fourth: The router always has two or more IP addresses
. Each interface of the router has an IP address with a different network number.
Fifth: The resolution from the IP address to the hardware address is automatic. The user of the host I
do nβt know this process of address resolution.
As long as the host or router wants
to communicate with another host or router with a known IP address on the network, the ARP protocol will automatically
resolve the IP address to the link layer. Hardware address
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ Three-level IP address-subnet division :
1) Subnet division is purely internal to a unit, and the unit still behaves as a network without subnet division.
2) Borrowing several bits from the host number as a subnet number subnet- id, and the host number host-id is correspondingly
reduced by several bits
IP address :: = {<network number>, <subnet number>, <host number>}
3) Process and ideas
Any IP datagram sent from another network to a host of this unit
is still based on the destination network number net-id of the IP datagram, first find
the router connected to the network of this unit
and then this router After receiving the IP datagram,
find the destination subnet according to the destination network number net-id and subnet number subnet-id
Finally deliver the IP datagram directly to the destination host
4) The division of subnets only divides the host-id part of the IP address without changing the original network number of the IP address net-i
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ Three-level IP address-subnet division :
1) Subnet division is purely internal to a unit, and the unit still behaves as a network without subnet division.
2) Borrowing several bits from the host number as a subnet number subnet- id, and the host number host-id is correspondingly
reduced by several bits
IP address :: = {<network number>, <subnet number>, <host number>}
3) Process and ideas
Any IP datagram sent from another network to a host of this unit
is still based on the destination network number net-id of the IP datagram, first find
the router connected to the network of this unit
and then this router After receiving the IP datagram,
find the destination subnet according to the destination network number net-id and subnet number subnet-id
Finally deliver the IP datagram directly to the destination host
4) The division of subnets only divides the host-id part of the IP address without changing the original network number of the IP address net-i
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ HOW TO STAY ANONYMOUSLY ON INTERNET FULL BY UNDERCODE :
A) SOCIAL METHODES :
1) Get yourself another account
Today, email has become a universal identifier for a network user identity. Therefore, first of all, it is worth taking care of the second (third, fourth) email address. It can be either just an additional Gmail account, or one of the special mail services described in this article . After that, register on it new accounts in social networks and other necessary services. Never mix your public and private profile.
2) Do not use domestic services
I have nothing against our search, mail, social sites, in many ways they are even better. They are worse only in that, if necessary, interested people or structures can quite easily scratch out the information they need about you. Therefore, do not use the services of the country in which you reside.
3) Change the connection location
If you want to further complicate the work of potential pursuers, then do not sit at home, but take a walk around the neighborhood. An attentive and thoughtful search will tell you dozens of available cafes, computer clubs, libraries from which you can use the Internet, without risking highlighting your real and network address.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ HOW TO STAY ANONYMOUSLY ON INTERNET FULL BY UNDERCODE :
A) SOCIAL METHODES :
1) Get yourself another account
Today, email has become a universal identifier for a network user identity. Therefore, first of all, it is worth taking care of the second (third, fourth) email address. It can be either just an additional Gmail account, or one of the special mail services described in this article . After that, register on it new accounts in social networks and other necessary services. Never mix your public and private profile.
2) Do not use domestic services
I have nothing against our search, mail, social sites, in many ways they are even better. They are worse only in that, if necessary, interested people or structures can quite easily scratch out the information they need about you. Therefore, do not use the services of the country in which you reside.
3) Change the connection location
If you want to further complicate the work of potential pursuers, then do not sit at home, but take a walk around the neighborhood. An attentive and thoughtful search will tell you dozens of available cafes, computer clubs, libraries from which you can use the Internet, without risking highlighting your real and network address.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦SOFTWARE METHODES HOW TO STAY ANONYMOUSLY ON INTERNET FULL BY UNDERCODE :
1) Proxies
Quite simply, a proxy is a service or program that acts as an intermediary between you and the site you are requesting. It turns out that all your surfing requests will be addressed to only one server, and it will already send them where necessary. In addition to the banal search in the network of open proxies, which are quite sufficient, including free ones, you can use this technology with more sophisticated methods, which we wrote about in the following articles:
How to access sites inaccessible in your country
4 free proxies to block ads
How to use Google services to access restricted sites
2) VPN
Virtual Private Network - these are several technologies and methods that allow you to create a special encrypted and inaccessible channel between a user and the Internet. This allows you to hide your real IP address and become anonymous, as well as encrypt your traffic. In the framework of this article, we will not dwell on deciphering the features of the operation of different VPN protocols, we only note that this method, in general, is quite reliable and easy to use. You can learn about its practical application from our following articles:
> ZenMate - Free VPN for Google Chrome
> Three easy ways to read blocked sites in your country
> TunnelBear - the easiest VPN on your Android
> Hotspot Shield - Internet Without Borders
3) TOR
TOR is a network of routers and software designed specifically to ensure user anonymity. Roughly speaking, when using this technology, your request to the site and the answer from it go through such a winding and complicated way through a chain of proxy servers that it is almost impossible to calculate the client
WRITTEN BY UNDERCODE
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦SOFTWARE METHODES HOW TO STAY ANONYMOUSLY ON INTERNET FULL BY UNDERCODE :
1) Proxies
Quite simply, a proxy is a service or program that acts as an intermediary between you and the site you are requesting. It turns out that all your surfing requests will be addressed to only one server, and it will already send them where necessary. In addition to the banal search in the network of open proxies, which are quite sufficient, including free ones, you can use this technology with more sophisticated methods, which we wrote about in the following articles:
How to access sites inaccessible in your country
4 free proxies to block ads
How to use Google services to access restricted sites
2) VPN
Virtual Private Network - these are several technologies and methods that allow you to create a special encrypted and inaccessible channel between a user and the Internet. This allows you to hide your real IP address and become anonymous, as well as encrypt your traffic. In the framework of this article, we will not dwell on deciphering the features of the operation of different VPN protocols, we only note that this method, in general, is quite reliable and easy to use. You can learn about its practical application from our following articles:
> ZenMate - Free VPN for Google Chrome
> Three easy ways to read blocked sites in your country
> TunnelBear - the easiest VPN on your Android
> Hotspot Shield - Internet Without Borders
3) TOR
TOR is a network of routers and software designed specifically to ensure user anonymity. Roughly speaking, when using this technology, your request to the site and the answer from it go through such a winding and complicated way through a chain of proxy servers that it is almost impossible to calculate the client
WRITTEN BY UNDERCODE
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ Carding tip :
> Bank card fraud is called carding.
1) Let's start with the "classics". You came to withdraw money through an ATM. Hurry, literally on the run, enter the PIN code, while chatting on the phone. You didnβt even look at the inconspicuous guy in a baseball cap and dark glasses looking over your shoulder. But he watched you very carefully. He spied and memorized the numbers that you entered. Next elementary gop-stop - and goodbye, money.
2) Also, in the confusion, you can not see that in front of you is not a real ATM, but a fake. After all, the device is exactly like the real one. Stickers, instructions - everything is as it should. Insert the card, enter the PIN code, and the screen displays: β
> The device is malfunctioning,β βA system error has occurred,β βNot enough money,β or something like that. Well, it happens. You go to look for another ATM. But before you find it, scammers will empty your account. After all, with the help of a phantom ATM, they already read all the necessary data about your card.
3) Often mimic the malfunction of ATMs . For example, late in the evening you return home and decide on the way to cash out your salary. We inserted a card, entered a PIN code, the amount - everything is going fine. The card reader gave the card, but the tray where the money should appear does not open. Has broken? Probably! Around it is dark, you need to call the bank and find out what happened. You walked literally ten meters, and nimble thieves had already removed the tape and took your money. Yes, yes, notes were not issued by simple adhesive tape.
π¦ false
FREE ASSISTANT FOR ALIEXPRESS β’
FREE ASSISTANT FOR ALIEXPRESS β’
ALIRADAR WILL SHOW THE BEST DISCOUNTS AND FIND RELIABLE SELLERS - DO NOT LOSE MONEY!
ALIRADAR WILL SHOW THE BEST DISCOUNTS AND FIND RELIABLE SELLERS - DO NOT LOSE MONEY!
ALIRADAR WILL SHOW THE BEST DISCOUNTS AND FIND RELIABLE SELLERS - DO NOT LOSE MONEY!
MORE ON ALIRADAR.COM
YANDEX.DIRECT
π¦ Carding tip :
> Bank card fraud is called carding.
1) Let's start with the "classics". You came to withdraw money through an ATM. Hurry, literally on the run, enter the PIN code, while chatting on the phone. You didnβt even look at the inconspicuous guy in a baseball cap and dark glasses looking over your shoulder. But he watched you very carefully. He spied and memorized the numbers that you entered. Next elementary gop-stop - and goodbye, money.
2) Also, in the confusion, you can not see that in front of you is not a real ATM, but a fake. After all, the device is exactly like the real one. Stickers, instructions - everything is as it should. Insert the card, enter the PIN code, and the screen displays: β
> The device is malfunctioning,β βA system error has occurred,β βNot enough money,β or something like that. Well, it happens. You go to look for another ATM. But before you find it, scammers will empty your account. After all, with the help of a phantom ATM, they already read all the necessary data about your card.
3) Often mimic the malfunction of ATMs . For example, late in the evening you return home and decide on the way to cash out your salary. We inserted a card, entered a PIN code, the amount - everything is going fine. The card reader gave the card, but the tray where the money should appear does not open. Has broken? Probably! Around it is dark, you need to call the bank and find out what happened. You walked literally ten meters, and nimble thieves had already removed the tape and took your money. Yes, yes, notes were not issued by simple adhesive tape.
π¦ false
FREE ASSISTANT FOR ALIEXPRESS β’
FREE ASSISTANT FOR ALIEXPRESS β’
ALIRADAR WILL SHOW THE BEST DISCOUNTS AND FIND RELIABLE SELLERS - DO NOT LOSE MONEY!
ALIRADAR WILL SHOW THE BEST DISCOUNTS AND FIND RELIABLE SELLERS - DO NOT LOSE MONEY!
ALIRADAR WILL SHOW THE BEST DISCOUNTS AND FIND RELIABLE SELLERS - DO NOT LOSE MONEY!
MORE ON ALIRADAR.COM
YANDEX.DIRECT
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦Another carding trick is called the Lebanese noose :
t.me/undercodeTesting
1) This is when a lasso from the film is inserted into the card reader. If you get into it, the card can no longer be pulled out. As a rule, there is an βassistant" right there: "Yesterday I ate the card exactly the same way, I entered just such a combination and PIN code, and it worked." You try, fail, and go to the bank for help.
<> At this time, the good Samaritan takes the card and goes to empty it. He knows the PIN. You yourself have just entered it openly. Do you remember?
2) However, an ATM can be real and even serviceable. This is not a problem if attackers have a skimmer . This is a device for reading information encoded on the magnetic strip of the card. Physically, the skimmer is a patch block attached to the card reader, while it looks like part of the design of the ATM.
π¦ how to protect a bank card ?
1) On the left - an ATM without a skimmer, on the right - with a skimmer
Using a transmitter, fraudsters receive information from a skimmer and make fake cards. They will use a skimmed card, but money will be debited from the original account. Hence the name of the method is skimming, from English βskim the creamβ.
2) How do they recognize the PIN?
> In addition to the skimmer, they have other devices. For example, an overhead keyboard . It completely imitates the real one, but at the same time remembers the typed key combinations.
WRITTEN BY UNDERCODE
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦Another carding trick is called the Lebanese noose :
t.me/undercodeTesting
1) This is when a lasso from the film is inserted into the card reader. If you get into it, the card can no longer be pulled out. As a rule, there is an βassistant" right there: "Yesterday I ate the card exactly the same way, I entered just such a combination and PIN code, and it worked." You try, fail, and go to the bank for help.
<> At this time, the good Samaritan takes the card and goes to empty it. He knows the PIN. You yourself have just entered it openly. Do you remember?
2) However, an ATM can be real and even serviceable. This is not a problem if attackers have a skimmer . This is a device for reading information encoded on the magnetic strip of the card. Physically, the skimmer is a patch block attached to the card reader, while it looks like part of the design of the ATM.
π¦ how to protect a bank card ?
1) On the left - an ATM without a skimmer, on the right - with a skimmer
Using a transmitter, fraudsters receive information from a skimmer and make fake cards. They will use a skimmed card, but money will be debited from the original account. Hence the name of the method is skimming, from English βskim the creamβ.
2) How do they recognize the PIN?
> In addition to the skimmer, they have other devices. For example, an overhead keyboard . It completely imitates the real one, but at the same time remembers the typed key combinations.
WRITTEN BY UNDERCODE
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ 2020 new Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
t.me/UndercodeTesting
π¦ ππΌππ πππΈβπ :
1) git clone https://github.com/leebaird/discover /opt/discover/
2) All scripts must be ran from this location.
cd /opt/discover/
3) ./update.sh
π¦ RECON
1. Domain
2. Person
3. Parse salesforce
SCANNING
4. Generate target list
5. CIDR
6. List
7. IP, range, or domain
8. Rerun Nmap scripts and MSF aux
WEB
9. Insecure direct object reference
10. Open multiple tabs in Firefox
11. Nikto
12. SSL
MISC
13. Parse XML
14. Generate a malicious payload
15. Start a Metasploit listener
16. Update
17. Exit
π¦ Tested on
> kali
> debian
> parrot
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ 2020 new Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
t.me/UndercodeTesting
π¦ ππΌππ πππΈβπ :
1) git clone https://github.com/leebaird/discover /opt/discover/
2) All scripts must be ran from this location.
cd /opt/discover/
3) ./update.sh
π¦ RECON
1. Domain
2. Person
3. Parse salesforce
SCANNING
4. Generate target list
5. CIDR
6. List
7. IP, range, or domain
8. Rerun Nmap scripts and MSF aux
WEB
9. Insecure direct object reference
10. Open multiple tabs in Firefox
11. Nikto
12. SSL
MISC
13. Parse XML
14. Generate a malicious payload
15. Start a Metasploit listener
16. Update
17. Exit
π¦ Tested on
> kali
> debian
> parrot
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ 2020 new A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
pinterest.com/undercode_Testing
π¦ ππΌππ πππΈβπ :
1) git clone https://github.com/codingo/Reconnoitre.git
After you have done this run setup.py with the following:
2) python3 setup.py install
After setup has run Reconnoitre will now be in your path (as reconnoitre) and you can launch it anywhere using:
reconnoitre <args>
3) Discover live hosts and hostnames within a range
reconnoitre -t 192.168.1.1-252 -o /root/Documents/testing/ --pingsweep --hostnames
4) Discover live hosts within a range and then do a quick probe for services
reconnoitre -t 192.168.1.1-252 -o /root/Documents/testing/ --pingsweep --services --quick
5) This will scan all services within a target range to create a file structure of live hosts as well as write recommendations for other commands to be executed based on the services discovered on these machines. Removing --quick will do a further probe but will greatly lengthen execution times.
6) Discover live hosts within a range and then do probe all ports (UDP and TCP) for services
reconnoitre -t 192.168.1.1-252 -o /root/Documents/testing/ --pingsweep --services
π¦COMMANDS :
-h, --help Display help message and exit
-t TARGET_HOSTS Set either a target range of addresses or a single host to target. May also be a file containing hosts.
-o OUTPUT_DIRECTORY Set the target directory where results should be written.
-w WORDLIST Optionally specify your own wordlist to use for pre-compiled commands, or executed attacks.
--pingsweep Write a new target.txt file in the OUTPUT_DIRECTORY by performing a ping sweep and discovering live hosts.
--dns, --dnssweep Find DNS servers from the list of target(s).
--snmp Find hosts responding to SNMP requests from the list of target(s).
--services Perform a service scan over the target(s) and write recommendations for further commands to execute.
--hostnames Attempt to discover target hostnames and write to hostnames.txt.
--virtualhosts Attempt to discover virtual hosts using the specified wordlist. This can be expended via discovered hostnames.
--ignore-http-codes Comma separated list of http codes to ignore with virtual host scans.
--ignore-content-length Ignore content lengths of specificed amount. This may become useful when a server returns a static page on every virtual host guess.
--quiet Supress banner and headers and limit feedback to grepable results.
--quick Move to the next target after performing a quick scan and writing first-round recommendations.
--no-udp Disable UDP service scanning, which is ON by default.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ 2020 new A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
pinterest.com/undercode_Testing
π¦ ππΌππ πππΈβπ :
1) git clone https://github.com/codingo/Reconnoitre.git
After you have done this run setup.py with the following:
2) python3 setup.py install
After setup has run Reconnoitre will now be in your path (as reconnoitre) and you can launch it anywhere using:
reconnoitre <args>
3) Discover live hosts and hostnames within a range
reconnoitre -t 192.168.1.1-252 -o /root/Documents/testing/ --pingsweep --hostnames
4) Discover live hosts within a range and then do a quick probe for services
reconnoitre -t 192.168.1.1-252 -o /root/Documents/testing/ --pingsweep --services --quick
5) This will scan all services within a target range to create a file structure of live hosts as well as write recommendations for other commands to be executed based on the services discovered on these machines. Removing --quick will do a further probe but will greatly lengthen execution times.
6) Discover live hosts within a range and then do probe all ports (UDP and TCP) for services
reconnoitre -t 192.168.1.1-252 -o /root/Documents/testing/ --pingsweep --services
π¦COMMANDS :
-h, --help Display help message and exit
-t TARGET_HOSTS Set either a target range of addresses or a single host to target. May also be a file containing hosts.
-o OUTPUT_DIRECTORY Set the target directory where results should be written.
-w WORDLIST Optionally specify your own wordlist to use for pre-compiled commands, or executed attacks.
--pingsweep Write a new target.txt file in the OUTPUT_DIRECTORY by performing a ping sweep and discovering live hosts.
--dns, --dnssweep Find DNS servers from the list of target(s).
--snmp Find hosts responding to SNMP requests from the list of target(s).
--services Perform a service scan over the target(s) and write recommendations for further commands to execute.
--hostnames Attempt to discover target hostnames and write to hostnames.txt.
--virtualhosts Attempt to discover virtual hosts using the specified wordlist. This can be expended via discovered hostnames.
--ignore-http-codes Comma separated list of http codes to ignore with virtual host scans.
--ignore-content-length Ignore content lengths of specificed amount. This may become useful when a server returns a static page on every virtual host guess.
--quiet Supress banner and headers and limit feedback to grepable results.
--quick Move to the next target after performing a quick scan and writing first-round recommendations.
--no-udp Disable UDP service scanning, which is ON by default.
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
Pinterest
UnderCode TESTING (UNDERCODE_TESTING) - Profile | Pinterest
UnderCode TESTING | πππππ£βπ ππ πππ€π₯πππ βπ ππ‘πππͺ:
Programming, Web & Applications makers, Host, bugs fix, Satellite Reicivers Programming..
Started Since 2011
Programming, Web & Applications makers, Host, bugs fix, Satellite Reicivers Programming..
Started Since 2011
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ fast wifi hacking, snifff data updated :
t.me/UndercodeTesting
π¦ ππΌππ πππΈβπ :
1) git clone https://github.com/xdavidhu/mitmAP"
starting:
2) Kali Linux -> "sudo python3 mitmAP.py"
3) Raspberry PI -> "sudo python3 mitmAP_rpi.py"
π¦FEATURES :
SSLstrip2
Driftnet
Tshark
Full featured access point, with configurable speed limit
mitmproxy
Wireshark
DNS Spoofing
Saving results to file
β β β ο½ππ»βΊπ«Δπ¬πβ β β β
π¦ fast wifi hacking, snifff data updated :
t.me/UndercodeTesting
π¦ ππΌππ πππΈβπ :
1) git clone https://github.com/xdavidhu/mitmAP"
starting:
2) Kali Linux -> "sudo python3 mitmAP.py"
3) Raspberry PI -> "sudo python3 mitmAP_rpi.py"
π¦FEATURES :
SSLstrip2
Driftnet
Tshark
Full featured access point, with configurable speed limit
mitmproxy
Wireshark
DNS Spoofing
Saving results to file
β β β ο½ππ»βΊπ«Δπ¬πβ β β β