- 概述:
DMitry(Deepmagic Information Gathering Tool)是一个一体化的信息收集工具。它可以用来收集以下信息:
1. 端口扫描
2. whois主机IP和域名信息
3. 从Netcraft.com获取主机信息
4. 子域名
5. 域名中包含的邮件地址
尽管这些信息可以在Kali中通过多种工具获取,但是使用DMitry可以将收集的信息保存在一个文件中,方便查看。
- 参数:
- 常用:
- 获取 whois ,ip,主机信息,子域名,电子邮件
子域名和电子邮箱依赖谷歌搜索,没有FQ的可能比较蛋疼一点,可以只用 -win参数
[email protected]:~$ dmitry -winse cnblogs.com
Deepmagic Information Gathering Tool
"There be some deep magic going on"
ERROR: Unable to locate Host IP addr. for cnblogs.com
Continuing with limited modules
HostIP:
HostName:cnblogs.com
Gathered Inic-whois information for cnblogs.com
---------------------------------
Domain Name: CNBLOGS.COM
Registrar: 35 TECHNOLOGY CO., LTD
Sponsoring Registrar IANA ID: 1316
Whois Server: whois.35.com
Referral URL: http://www.35.com
Name Server: NS3.DNSV4.COM
Name Server: NS4.DNSV4.COM
Status: clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited
Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited
Updated Date: 12-nov-2014
Creation Date: 12-nov-2003
Expiration Date: 12-nov-2021
>>> Last update of whois database: Thu, 24 Dec 2015 15:40:29 GMT <<<
For more information on Whois status codes, please visit
https://www.icann.org/resources/pages/epp-status-codes-2014-06-16-en.
NOTICE: The expiration date displayed in this record is the date the
regi in
ist Z L Dry ris l
currently set to expire. This date does not necessarily reflect the expiration
date of the domain name registrant‘s agreement with the sponsoring
registrar. Users may consult the sponsoring registrar‘s Whois database to
view the registrar‘s reported date of expiration for this registration.
TERMS OF USE: You are not authorized to access or query our Whois
database through the use of electronic processes that are high-volume and
gis ter dom Z ai Z N n names or
modify existing registrations; the Data in VeriSign Global Registry
Services‘ ("VeriSign") Whois database is provided by VeriSign for
information purposes only, and to assist persons in obtaining information
about or related to a domain name registration record. VeriSign does not
guarantee its accuracy. By submitting a Whois query, you agree to abide
by the following terms of use: You agree that you may use this Data only
wi ll you Z us Z N e th
is cesData
to: (1) allow, enable, or otherwise support the transmission of mass
unsolicited, commercial advertising or solicitations via e-mail, telephone,
or facsimile; or (2) enable high volume, automated, electronic processes
that apply to VeriSign (or its computer systems). The compilation,
repackaging, dissemination or other use of this Data is expressly
prohibited without the prior written consent of VeriSign. You agree not to
to acce Z N ss or
query the Whois database except as reasonably necessary to register
domain names or modify existing registrations. VeriSign reserves the right
to restrict your access to the Whois database in its sole discretion to ensure
operational stability. VeriSign may restrict or terminate your access to the
Whois database for failure to abide by these terms of use. VeriSign
reserves the right to modify these terms at any time.
Theoma
ins and
Registrars.
Gathered Netcraft information for cnblogs.com
---------------------------------
Retrieving Netcraft.com information for cnblogs.com
Netcraft.com Information gathered
Gathered Subdomain information for cnblogs.com
---------------------------------
Searching Google.com:80...
…………………………………
- 扫描网站端口(这个建议使用Nmap)
[email protected]:~$ dmitry -p cnblogs.com -f -b
Deepmagic Information Gathering Tool
"There be some deep magic going on"
HostIP:42.121.252.58
HostName:cnblogs.com
Gathered TCP Port information for 42.121.252.58
---------------------------------
Port State
1/tcp filtered
2/tcp filtered
3/tcp filtered
4/tcp filtered
5/tcp filtered
6/tcp filtered
7/tcp filtered
8/tcp filtered
9/tcp filtered
10/tcp filtered
11/tcp filtered
12/tcp filtered
13/tcp filtered
14/tcp filtered
15/tcp filtered
16/tcp filtered
17/tcp filtered
18/tcp filtered
19/tcp filtered
20/tcp filtered
21/tcp filtered
22/tcp filtered
23/tcp filtered
24/tcp filtered
25/tcp filtered
26/tcp filtered
27/tcp filtered
28/tcp filtered
29/tcp filtered
30/tcp filtered
31/tcp filtered
32/tcp filtered
33/tcp filtered
34/tcp filtered
35/tcp filtered
36/tcp filtered
37/tcp filtered
38/tcp filtered
39/tcp filtered
40/tcp filtered
41/tcp filtered
42/tcp filtered
43/tcp filtered
…………………………
★Kali信息收集~★6.Dmitry:汇总收集
时间: 2024-08-05 06:40:56
★Kali信息收集~★6.Dmitry:汇总收集的相关文章
★Kali信息收集★8.Nmap :端口扫描
★Kali信息收集~ 0.Httrack 网站复制机 http://www.cnblogs.com/dunitian/p/5061954.html ★Kali信息收集~ 1.Google Hacking + Github Hacking http://www.cnblogs.com/dunitian/p/5074765.html ★Kali信息收集~2.Whois :域名信息 http://www.cnblogs.com/dunitian/p/5074768.html ★Kali信息收集~3.子
Kali信息收集系列:(都是我以前的笔记整理了一下,就没加水印,习惯就好)
好几天没发微信公众号了,今天一起发下.(最近有点事情) 前些天老业界的一位朋友问我一些Safe新时代信息收集的问题 逆天虽然好多年不干老本行,但隔段时间都会关注一下 于是就花了点时间整理了一下,你们就当看笑话看看吧 不知道的就长点见识,知道了就笑笑~~~~~~~~ 下周起继续更新专业知识~~ 请容忍我偶尔开个安全的小差~~~(*^__^*) ~~~ —————————————————————————————— ★Kali信息收集~ 0.Httrack 网站复制机 http://www.cnblo
kali信息收集之域名查询
一:域名查询工具DMitry DMitry工具是用来查询IP或域名WHOIS信息的. WHOIS是用来查询域名是否已经被注册及已经注册域名的详细信息的数据库(如域名所有人和域名注册商) . 使用该工具可以查到域名的注册商和过期时间等,是一个一体化的信息收集工具. 它可以用来收集以下信息: 1. 端口扫描 2. whois主机IP和域名信息 3. 从Netcraft.com获取主机信息 4. 针对目标主机查询子域名 5. 目标主机域名中包含的邮件地址 使用: 列出帮助信息:dmitry –help
进击的Kali -->; 信息收集
whois 当你知道目标的域名,首先要做的就是通过Whois数据库查询域名的注册信息,Whois提供域名的注册人信息,包括联系方式,管理员名字,管理员邮箱等 其中也包括DNS服务器的信息 (DNS(Domain Name Server,域名服务器)是进行域名(domain name)和与之相对应的IP地址 (IP address)转换的服务器.DNS中保存了一张域名(domain name)和与之相对应的IP地址 (IP address)的表,以解析消息的域名. ) 输入要查询的域名 whois
★Kali信息收集~2.Whois :域名信息
?Web地址:http://whois.chinaz.com/ | http://www.whois.net/ 软件参数:whois ? ? ?常用命令:whois 域名 (重点看whois server和Referral URL) ? ?
★Kali信息收集~ 5.The Harvester:邮箱挖掘器
官网:http://www.edge-security.com 安装:apt-get install theHarvester 运行:终端输入 theharvester (小写) 用法+参数:(返回邮箱+子域名) 最常见用法:theharvester -d 域名|公司名 -b 搜索来源(google,bing,pgp,linkedin等) 不是每次都有结果的淡定点
★Kali信息收集~★7.FPing :ip段扫描
参数: 使用方法: fping [选项] [目标...] -a显示是活着的目标 -A 显示目标地址 -b n 大量 ping 数据要发送,以字节为单位 (默认 56) -B f 将指数退避算法因子设置为 f -c n 的计数的 ping 命令发送到每个目标 (默认为 1) -C n-c,相同报告结果在冗长的格式 -D 打印前每个输出行的时间戳 -e 显示经过的时间上返回数据包 -f 文件读取列表中的目标是从一个文件 (-意味着 stdin) (仅当没有-g 指定) -g 生成目标列表 (仅当没有
平时遇到一些问题的汇总收集(mvc)
1.asp.net mvc对数据校验提供了相当方便的支持,对于前后端的校验都是这个样子.如需要校验某个字段,只需要到对应的实体类中打上响应的标签 public class Teacher { [StringLength(5,ErrorMessage="*姓名长度不可超过5")] [Required(ErrorMessage="*必填项-姓名")] public string Name { get; set; } [Required(ErrorMessage = &q
JS 常用库汇总收集
本文不定期更新, 用于汇总记录一些看着 ok 的 JS 库. 库名 简介 项目地址 macy.js 仅 4 kb的 原生 流布局插件 http://macyjs.com/ Driver.js 仅 4 kb的 原生 页面分步引导 Tippy.js 玩转鼠标悬停提示信息 tesseract.js OCRjs库 https://www.npmjs.com/package/tesseract-js wow.js 动画库 toastr.js 依赖于 JQ 的非阻塞通知的JS库 Day.js