Sólo texto | Texto con Imágenes

Underc0de

Foros Generales => International forum => Mensaje iniciado por: HATI en Abril 17, 2016, 06:54:10 PM

Título: Recon-ng - Information gathering
Publicado por: HATI en Abril 17, 2016, 06:54:10 PM
(http://i.imgur.com/TWwvbTh.png)

# RECON-NG #

You can read this post on Spanish language:Recon-ng - Recopilación de información (https://underc0de.org/foro/hacking/recon-ng-recopilacion-de-informacion/msg100151/#msg100151)
Recon-ng is a Python framework focused on gathering information, it can obtain a lot of data from a target and his environment. It have differente and independent modules, and you can combine the results obtained for more efficiency. Definetly, Recon-ng is a powerful tool for gathering information fast on the web.

Basics uses and modules:


# Start menu:
Código [Seleccionar]
recon-ng
(http://i.imgur.com/7m9hAzD.png)


# Help
Código [Seleccionar]
help
(http://i.imgur.com/rqdMC5a.png)


Recon-ng lets you create profiles for analyze different objectives without mixing information, that is stored for later reference, something very useful.
# Create profile
Código [Seleccionar]
workspaces add <perfil>
Código [Seleccionar]
add domains <domain>
Código [Seleccionar]
show domains
(http://i.imgur.com/vvnlBeD.png)


We can see the different modules of Recon-ng, the modules are clasiffied in different sections (Discovery, Exploitation, Import, Recon y Reporting).
# Show modules
Código [Seleccionar]
show modules
We can search modules by name:
Código [Seleccionar]
SEARCH <module>
(http://i.imgur.com/aZ64Ij9.png)


When we know which module we will use, we must load it (i will use netcraft for the example). There are two commands for do this:
# Select module
Código [Seleccionar]
use <module>
load <module>
With the module loaded, we can see information abaut it and his options.
Código [Seleccionar]
show info
If we have not created a profile, we can select our "target"
Código [Seleccionar]
set SOURCE <domain>
(http://i.imgur.com/bm4hb8b.png)


# Start module
Código [Seleccionar]
run
(http://i.imgur.com/Gk7Oxgq.png)


There are a lot of different modules, they bring us great variety of ways to find information of a specific target, we can even use social networks like Twitter or analyze domains looking for ssl vulnerabilities. The results can be displayed in different tables, as "contacts", "companies", "hosts" ...
Código [Seleccionar]
show <lista>
(http://i.imgur.com/QObDWvD.png)



Spanish post:Recon-ng - Recopilación de información (https://underc0de.org/foro/hacking/recon-ng-recopilacion-de-informacion/)
Official web: Recon-ng (https://bitbucket.org/LaNMaSteR53/recon-ng)


Regards, hati  ;D
Sólo texto | Texto con Imágenes