Archive for July, 2012

Jigsaw – Email Enumeration Tool (Employees Footprinting)

0
9 months ago
by Raj Chandel in , ,

Jigsaw.rb is a simple ruby script for enumerating information about a company’s employees. It is useful for Social Engineering or Email Phishing.

First Download jigsaw script here and save in your desktop

Now unzip the file unzip jigsaw.zip

You can start it with./jigsaw.rb –s www.example.com

Jigsaw usage Example

-i, –id [Jigsaw Company ID]      The Jigsaw ID to use to pull records
-s, –search [Company Name]      Name of organization to search for
-r, –report [Output Filename]   Name to use for report EXAMPLE: ‘-r facebook’ will generate ‘facebook.csv’
        -v, –verbose                    Enables verbose output

 

URLCrazy-Domain Name Typo Tool

0
10 months ago
by Raj Chandel in , ,

URLCrazy is a tool that can generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.

Features

  • Generates 15 types of domain variants
  • Knows over 8000 common misspellings
  • Supports cosmic ray induced bit flipping
  • Multiple keyboard layouts (qwerty, azerty, qwertz, dvorak)
  • Checks if a domain variant is valid
  • Test if domain variants are in use
  • Estimate popularity of a domain variant
  • URLCrazy requires Linux and the Ruby interpreter

First download urlcrazy from here and save on your desktop

Now untar the file tar -zxvf urlcrazy.tar.gz

You can start it with./urlcrazy www.example.com

Crystal-Anti-Exploit Protection

0
10 months ago
by Raj Chandel in

CrystalAEP is designed to provide frontline protection against Internet-borne threats such as viruses and malware. Unlike the typical anti-virus program, Crystal does not attempt to recognize threats based on signatures, and does not require constant updating to protect against the latest threats. Crystal works instead by manipulating at-risk software while it runs to help form an environment which is hostile to Internet worms, malware and other types of malicious code.

Download

Netifera-Network Security Tool

4
10 months ago
by Raj Chandel in ,

Netifera is a new modular open source platform for creating network security tools. This project provides many advantages for both security developers and researchers who want to implement new tools as well as the community of users of these tools.

Features of Netifera

  • Full IPv6 support
  • TCP and UDP network scanning
  • Service detection
  • Operating system identification
  • Reverse DNS scanning
  • DNS name brute forcing
  • DNS zone transfer information gathering
  • Geographical information about network addresses
  • Authentication brute force attack (against HTTP, FTP,IMAP and POP3)
  • Web crawler discovers applications, collects email addresses and adds the site structure to the model
  • Integrated terminal for connecting to and interacting with network services

Open your Backtrack Terminal & Type cd /pentest/scanners/netifera

 

You can also do this manually. First Open Your backtrack and Follow these path

Applications->Backtrack->Information Gathering->Network Analysis->Network Scanners->netifera

Go to Top