Subdomain Scanner | Digital Footprinting | Enumeration of a domain
The information Gathering phase of Ethical Hacking, which is first phase, is called as the process of Enumeration. The attacker identifies as many attack vectors as possible by establishing as active connection with the victim. It is a process of extracting user names, machine names, and shares, network resources, running process and running services from the system.
The gathered information is used to identify the vulnerabilities or weak points in system security and tries to exploit in the System gaining phase.
Types of Information Enumerated by Intruders:
èUsers and Groups
èNetwork Resource and Shares
èRouting Tables
èAuditing and Service settings
èMachine names
èSNMP and DNS details
èApplications and Banners.
èARP and CAM tables
èPasswords policies list
Services and Port to Enumerate:
èBrute Force to Active Directory
èExtract user groups from windows
èExtract user names using SNMP
èExtracting user names using email Id’s
èExtracting information using DNS Zone transfer
Service and Port to Enumerate:
̬53 Рfor DNS Zone Transfer
̬137 Рfor NetBIOS Name service
̬135 Рfor Microsoft RPC Endpoint Mapper
̬139 Рfor NetBIOS session service
̬161 Рfor SNMP
̬389 Рfor LDAP (Lightweight Directory Protocol)
̬445 Рfor SMB (Samba service) over TCP
̬25 Рfor SMTP (Simple Mail transfer Protocol)
Tools for Enumerations:
èNBTscan
èDumpSec
èLegion
èNat
èSMBScanner
èNBTDump
èNBTEnum
èNetcat
èNmap
èDNSEnum
èNTP Suite
Let’s have a look in Examples:
1. Enum4linux:It is used to enumerate Linux systems, but we enumerate windows OS also. Below is snapshot you can refer it.
Here, you can see the options available through this attribute we can fetch out the information related to Linux OS.
Check this scan done on Windows 7 x64 bit Ultimate version.
In above figure, you can check out Domain/Workgroupof the Target, Service is running on it. And see the MAC addressis also fetched.
1. Dnsenum: This tool is for Enumerating Domain Name System, including MX Records, Reverse Lookup, CNAME and Whois lookup.
Check the options available in Dnsenum tool.
In above figure, we can see the Host addresses, Name Servers and Mail Exchange server information.
Here we Result from Google, like CNMAE and its subdomain information.
Selling good and fresh cvv fullz
ReplyDeletetrack 1 and 2 with pin
bank login
bank transfer
writing cheques
transfer to cc ...
Sell Fresh CVV - Western Union Transfer - Bank Login - Card Dumps - Paypal - Ship
Fresh Cards, Selling Dumps, Cvvs, Fullz
Tickets,Hotels,Credit card topup...Paypal transfer, Mailer,Smtp,western union login,
Book Flight Online
SELL CVV GOOD And HACK BIG CVV GOOD Credit Card
Fresh Cards. Selling Dumps, Cvvs, Fullz.Tickets,Hotels,Credit cards
Sell Cvv(cc) - Wu Transfer - Card Dumps - Bank login/paypal
And many more other hacking services
contact me : hackerw169@gmail.com
ICQ: 699 396 818
- I have account paypal with good balance
- I hope u good customers and will be long-term cooperation
Prices Western Union Online Transfer
-Transfer(Eu,Uk,Asia,Canada,Us,France,Germany,Italy and very
easy to do African)
- 200$ = 1500$ (MTCN and sender name + country sender)
- 350$ = 4000$ (MTCN and sender name + country sender)
- 500$ = 6000$ (MTCN and sender name + country sender)
- 600$ = 8000$ (MTCN and sender name + country sender)
Then i will do transfer's for you, After about 30 mins you'll have
MTCN and sender name + country sender
- Dumps prices
- Tracks 1&2 US = 85$ per 1
- Tracks 1&2 UK = 100$ per 1
- Tracks 1&2 CA / AU = 110$ per 1
- Tracks 1&2 EU = 120$ per 1
Bank Logins Prices US UK CA AU EU
- Bank Us : ( HALIFAX,BOA,CHASE,Wells Fargo...)
. Balance 5000$ = 250$
. Balance 8000$ = 400$
. Balance 12000$ = 600$
. Balance 15000$ = 800$
. Balance 20000$ = 1000$
- Bank UK : ( LLOYDS TSB,BARCLAYS,Standard Chartered,HSBC...)
. Balance 5000 GBP = 300 GBP
. Balance 12000 GBP = 600 GBP
. Balance 16000 GBP = 700 GBP
. Balance 20000 GBP = 1000 GBP
. Balance 30000 GBP = 1200 GBP
contact me : hackerw169@gmail.com
ICQ: 699 396 818
Hello all
ReplyDeleteam looking few years that some guys comes into the market
they called themselves hacker, carder or spammer they rip the
peoples with different ways and it’s a badly impact to real hacker
now situation is that peoples doesn’t believe that real hackers and carder scammer exists.
Anyone want to make deal with me any type am available but first
I‘ll show the proof that am real then make a deal like
Available Services
..Wire Bank Transfer all over the world
..Western Union Transfer all over the world
..Credit Cards (USA, UK, AUS, CAN, NZ)
..School Grade upgrade / remove Records
..Spamming Tool
..keyloggers / rats
..Social Media recovery
.. Teaching Hacking / spamming / carding (1/2 hours course)
discount for re-seller
Contact: 24/7
fixitrogers@gmail.com