Irongeek

Recon Sites and Tools

8 posts in this topic

Hi All,

What are some good sites for doing recon on an organization via DNS tools/Google/Metadata etc?

Anyone know a good replacement for http://www.rapleaf.com ? It use to be good, but now is useless with the current TOS.

I'll start the list:

Tools:

Metagoofil:

http://www.edge-security.com/metagoofil.php

Maltego:

http://www.paterva.com/maltego/community-edition/

Sites:

http://regex.info/exif.cgi

http://tineye.com/

http://www.domaintools.com/

You really need ot checkout Tineye.

1

Share this post


Link to post
Share on other sites

www.allwhois.com

Solar Winds tools set

AGnet tool set (only comes bundled w/ wildpackets premium software now) older freeware versions can be found

Sam Spade tool set

Oputils

www.google.com

the many Unix network discovery utilities: tcptraceroute, host, whois, nslookup etc...

0

Share this post


Link to post
Share on other sites

Is this for your upcoming ISSA talk in Louisville?

I want to go but I'm to poor to drive over there.

If so make sure you record a video of it.

0

Share this post


Link to post
Share on other sites

There's a neat little Firefox add-on called "PassiveRecon" that's pretty efficient.

0

Share this post


Link to post
Share on other sites
Is this for your upcoming ISSA talk in Louisville?

I want to go but I'm to poor to drive over there.

If so make sure you record a video of it.

I plan to record it and put it up on my site. ;)

0

Share this post


Link to post
Share on other sites

Thanks phasma, I tried that plugin out, nice find.

0

Share this post


Link to post
Share on other sites
This is kinda cool; just came across it a little bit ago. Besides informing of when the mail was open, it will let you know by who, IP address, and to whom it was forwarded. It just uses an image to get the info though. Edited by tekio
0

Share this post


Link to post
Share on other sites

Although writing a Perl script works just as fine for this, a tool in the backtrack suite called dmitry has a nice reverse DNS scanner. I have found that finding other machines on the networks that are connected to the internet, but not always made publicly noticeable, seem to be very interesting.

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now