TheHarvester is an open source reconnaissance tool, it can dig out heaps of information, comprising of subdomains, email addresses, employee names, open ports, and so on. theHarvester mainly makes use of passive techniques and sometimes active techniques as well. theHarvester is a tool for gathering e-mail accounts, subdomain names, virtual hosts, open ports/ banners, and […]
DirBuster is a file/directory brute-forcer. It’s written in Java and programmed by OWASP members. It’s a Graphical user interface application. DirBuster is able to brute-force targets at crazy speeds. The GUI of DirBuster tool is easy to use as it gives many options for brute-forcing. It can go up to 100 threads which are so […]
Shodan is a search engine that allows the user find specific types of computers connected to the internet using a kind of filters. In their own words, it is the world’s first computer search engine, often dubbed as the search engine for hackers. We can use Shodan to find different types of information about a […]
Infoga is a tool, similar to The Harvester, for gathering e-mail accounts information from different public sources (search engines, pgp key servers). Is a really simple tool, but very effective for the early stages of a penetration test or just to know the visibility of your company on the Internet. Screenshots Installation git clone https://github.com/m4ll0k/Infoga.git […]
A simple email marketing trick is also abused by cyber-criminals, who are employing a technique known as “pixel tracking” to gather information on possible targets or to improve the efficiency of phishing attacks. Pixel tracking is a decades-old email marketing technique that relies on embedding a one-by-one pixel image, usually transparent or of the same […]
DMitry (Deepmagic Information Gathering Tool) is a UNIX/(GNU)Linux Command Line Application coded in C language. DMitry has the ability to gather as much information as possible about a host. Base functionality is able to gather possible subdomains, email addresses, uptime information, tcp port scan, whois lookups, and more. The information are gathered with following methods: […]
Facebook is back in the news, this time again for violating its users’ privacy by gathering a huge mass of facial data. A class-action lawsuit has been filed against the social media giant last week and it is claimed that the Facebook’s data-collection program titled automatic face-tagging feature has helped Facebook create “the largest privately held stash […]
As legislators grapple with increasingly vocal smartphone owners concerned with privacy, a new Bill before the U.S. House of Representatives aims to require mandatory consumer consent prior to allowing the collection or transfer of data on such devices. You may recall that a company called CarrierIQ recently became the center of attention after a user