- 9 Ara 2017
- 764
- 1
DMITRY
Dmıtry oldukça kullanışlı bir information gathering aracıdır.Bu araç ile bir host üzerinden birçok bilgi toplanabilir.Bunlar subdomain'ler , email adresleri , post tarama gibi bir çok şey olabilir.
Dmıtry'nin Temel Parametreleri
-o komutu:Hedef siteyi taratığımızda çıkan sonuçları kaydetmemiz.
-i komutu:Hedefte olan siteye whois sorgusu yapabilirsiniz.
-s komutu:Hedefimizdeki sitenin subdomainlerini taramamızı sağlar.
-e komutu:Hedef sitedeki e-mailleri taramamızı sağlar.
-p komutu:Hedef sitenin TCP portlarını taramamızı sağlar.
--Artık örneklerimize değinelim.
Kod:
root@kali:~# dmitry -i google.com
Deepmagic Information Gathering Tool
"There be some deep magic going on"
HostIP:172.217.169.142
HostName:google.com
Gathered Inet-whois information for 172.217.169.142
---------------------------------
inetnum: 172.103.96.0 - 172.240.255.255
netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK
descr: IPv4 address block not managed by the RIPE NCC
remarks: ------------------------------------------------------
remarks:
remarks: You can find the whois server to query, or the
remarks: IANA registry to query on this web page:
remarks: http://www.iana.org/assignments/ipv4-address-space
remarks:
remarks: You can access databases of other RIRs at:
remarks:
remarks: AFRINIC (Africa)
remarks: http://www.afrinic.net/ whois.afrinic.net
remarks:
remarks: APNIC (Asia Pacific)
remarks: http://www.apnic.net/ whois.apnic.net
remarks:
remarks: ARIN (Northern America)
remarks: http://www.arin.net/ whois.arin.net
remarks:
remarks: LACNIC (Latin America and the Carribean)
remarks: http://www.lacnic.net/ whois.lacnic.net
remarks:
remarks: IANA IPV4 Recovered Address Space
remarks: http://www.iana.org/assignments/ipv4-recovered-address-space/ipv4-recovered-address-space.xhtml
remarks:
remarks: ------------------------------------------------------
country: EU # Country is really world wide
admin-c: IANA1-RIPE
tech-c: IANA1-RIPE
status: ALLOCATED UNSPECIFIED
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: RIPE-NCC-HM-MNT
mnt-routes: RIPE-NCC-RPSL-MNT
created: 2018-01-31T15:37:19Z
last-modified: 2018-01-31T15:37:19Z
source: RIPE
role: Internet Assigned Numbers Authority
address: see http://www.iana.org.
admin-c: IANA1-RIPE
tech-c: IANA1-RIPE
nic-hdl: IANA1-RIPE
remarks: For more information on IANA services
remarks: go to IANA web site at http://www.iana.org.
mnt-by: RIPE-NCC-MNT
created: 1970-01-01T00:00:00Z
last-modified: 2001-09-22T09:31:27Z
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.91.2 (BLAARKOP)
All scans completed, exiting-Whois sorgusu yaptığımızda böyle bir çıktı alıyoruz.
Kod:
root@kali:~# dmitry -i google.com
Deepmagic Information Gathering Tool
"There be some deep magic going on"
HostIP:172.217.169.142
HostName:google.com
Gathered Inet-whois information for 172.217.169.142
---------------------------------
inetnum: 172.103.96.0 - 172.240.255.255
netname: NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK
descr: IPv4 address block not managed by the RIPE NCC
remarks: ------------------------------------------------------
remarks:
remarks: You can find the whois server to query, or the
remarks: IANA registry to query on this web page:
remarks: http://www.iana.org/assignments/ipv4-address-space
remarks:
remarks: You can access databases of other RIRs at:
remarks:
remarks: AFRINIC (Africa)
remarks: http://www.afrinic.net/ whois.afrinic.net
remarks:
remarks: APNIC (Asia Pacific)
remarks: http://www.apnic.net/ whois.apnic.net
remarks:
remarks: ARIN (Northern America)
remarks: http://www.arin.net/ whois.arin.net
remarks:
remarks: LACNIC (Latin America and the Carribean)
remarks: http://www.lacnic.net/ whois.lacnic.net
remarks:
remarks: IANA IPV4 Recovered Address Space
remarks: http://www.iana.org/assignments/ipv4-recovered-address-space/ipv4-recovered-address-space.xhtml
remarks:
remarks: ------------------------------------------------------
country: EU # Country is really world wide
admin-c: IANA1-RIPE
tech-c: IANA1-RIPE
status: ALLOCATED UNSPECIFIED
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: RIPE-NCC-HM-MNT
mnt-routes: RIPE-NCC-RPSL-MNT
created: 2018-01-31T15:37:19Z
last-modified: 2018-01-31T15:37:19Z
source: RIPE
role: Internet Assigned Numbers Authority
address: see http://www.iana.org.
admin-c: IANA1-RIPE
tech-c: IANA1-RIPE
nic-hdl: IANA1-RIPE
remarks: For more information on IANA services
remarks: go to IANA web site at http://www.iana.org.
mnt-by: RIPE-NCC-MNT
created: 1970-01-01T00:00:00Z
last-modified: 2001-09-22T09:31:27Z
source: RIPE # Filtered
% This query was served by the RIPE Database Query Service version 1.91.2 (BLAARKOP)
All scans completed, exiting--Bu şekildede subdomain taraması yaptık.
Kod:
root@kali:~# dmitry -e www.google.com
Deepmagic Information Gathering Tool
"There be some deep magic going on"
HostIP:172.217.16.68
HostName:www.google.com
Gathered E-Mail information for google.com
---------------------------------
Searching Google.com:80...
Searching Altavista.com:80...
Found 0 E-Mail(s) for host google.com, Searched 0 pages containing 0 results
All scans completed, exiting--Şeklinde de e-mail taraması yapmış bulunmaktayız.
Okuduğunuz için teşekkürler...
