root@bt:/pentest/enumeration/dns/dnsenum# ./dnsenum.pl is2c-dojo.com
so that script will produce information about is2c-dojo.com and the result is :
and information that I get from domain www.is2c-dojo.net is:
root@bt:/pentest/enumeration/dns/dnsenum# ./dnsenum.pl is2c-dojo.com
dnsenum.pl VERSION:1.2.2
----- is2c-dojo.com -----
Host's addresses:
__________________
is2c-dojo.com 13419 IN A 67.222.154.106
Name Servers:
______________
ns2.partnerit.us 9826 IN A 67.222.154.107
ns1.partnerit.us 9826 IN A 67.222.154.106
Mail (MX) Servers:
___________________
Trying Zone Transfers and getting Bind Versions:
_________________________________________________
Trying Zone Transfer for is2c-dojo.com on ns2.partnerit.us ...
AXFR record query failed: NOERROR
ns2.partnerit.us Bind Version: #9.3.6-P1-RedHat-9.3.6-16.P1.el5_7.1
Trying Zone Transfer for is2c-dojo.com on ns1.partnerit.us ...
AXFR record query failed: NOERROR
ns1.partnerit.us Bind Version: #9.3.6-P1-RedHat-9.3.6-16.P1.el5_7.1
brute force file not specified, bay.
root@bt:/pentest/enumeration/dns/dnsenum# ./dnsenum.pl is2c-dojo.com -w
dnsenum.pl VERSION:1.2.2
Warning: can't load Net::Whois::IP module, whois queries disabled.
----- is2c-dojo.com -----
Host's addresses:
__________________
is2c-dojo.com 13392 IN A 67.222.154.106
Name Servers:
______________
ns1.partnerit.us 9789 IN A 67.222.154.106
Mail (MX) Servers:
___________________
aspmx.l.google.com 92 IN A 74.125.65.27
Trying Zone Transfers and getting Bind Versions:
_________________________________________________
Trying Zone Transfer for is2c-dojo.com on ns2.partnerit.us ...
AXFR record query failed: NOERROR
ns2.partnerit.us Bind Version: #9.3.6-P1-RedHat-9.3.6-16.P1.el5_7.1
Trying Zone Transfer for is2c-dojo.com on ns1.partnerit.us ...
AXFR record query failed: NOERROR
ns1.partnerit.us Bind Version: #9.3.6-P1-RedHat-9.3.6-16.P1.el5_7.1
brute force file not specified, bay.
root@bt:/pentest/enumeration/dns/dnsenum# ./dnsenum.pl is2c-dojo.net -winformation that I get from domain www.spentera.com is:
dnsenum.pl VERSION:1.2.2
Warning: can't load Net::Whois::IP module, whois queries disabled.
----- is2c-dojo.net -----
Host's addresses:
__________________
is2c-dojo.net 28800 IN A 216.239.38.21
is2c-dojo.net 28800 IN A 216.239.32.21
is2c-dojo.net 28800 IN A 216.239.34.21
is2c-dojo.net 28800 IN A 216.239.36.21
Name Servers:
______________
partnerit1.earth.orderbox-dns.com 158355 IN A 67.15.47.189
partnerit1.earth.orderbox-dns.com 158355 IN A 67.15.253.220
partnerit1.earth.orderbox-dns.com 158355 IN A 67.15.47.188
partnerit1.earth.orderbox-dns.com 158355 IN A 67.15.253.219
partnerit1.mercury.orderbox-dns.com 158355 IN A 50.23.136.174
partnerit1.mercury.orderbox-dns.com 158355 IN A 50.23.136.229
partnerit1.mercury.orderbox-dns.com 158355 IN A 50.23.136.230
partnerit1.mercury.orderbox-dns.com 158355 IN A 50.23.136.173
partnerit1.mars.orderbox-dns.com 158355 IN A 184.173.149.221
partnerit1.mars.orderbox-dns.com 158355 IN A 184.173.150.57
partnerit1.mars.orderbox-dns.com 158355 IN A 184.173.150.58
partnerit1.mars.orderbox-dns.com 158355 IN A 184.173.149.222
partnerit1.venus.orderbox-dns.com 158354 IN A 50.23.75.45
partnerit1.venus.orderbox-dns.com 158354 IN A 50.23.75.96
partnerit1.venus.orderbox-dns.com 158354 IN A 50.23.75.44
partnerit1.venus.orderbox-dns.com 158354 IN A 50.23.75.97
Mail (MX) Servers:
___________________
Trying Zone Transfers and getting Bind Versions:
_________________________________________________
Trying Zone Transfer for is2c-dojo.net on partnerit1.earth.orderbox-dns.com ...
AXFR record query failed: query timed out
Unable to obtain Server Version for partnerit1.earth.orderbox-dns.com : query timed out
Trying Zone Transfer for is2c-dojo.net on partnerit1.mercury.orderbox-dns.com ...
AXFR record query failed: NOERROR
partnerit1.mercury.orderbox-dns.com Bind Version: LServed by POWERDNS 3.0 $Id: packethandler.cc 2231 2011-07-11 07:25:27Z ahu $
Trying Zone Transfer for is2c-dojo.net on partnerit1.mars.orderbox-dns.com ...
AXFR record query failed: NOERROR
partnerit1.mars.orderbox-dns.com Bind Version: LServed by POWERDNS 3.0 $Id: packethandler.cc 2231 2011-07-11 07:25:27Z ahu $
Trying Zone Transfer for is2c-dojo.net on partnerit1.venus.orderbox-dns.com ...
AXFR record query failed: NOERROR
partnerit1.venus.orderbox-dns.com Bind Version: LServed by POWERDNS 3.0 $Id: packethandler.cc 2231 2011-07-11 07:25:27Z ahu $
brute force file not specified, bay.
root@bt:/pentest/enumeration/dns/dnsenum# ./dnsenum.pl spentera.comwhen I use what web aplication I get some thing like this
dnsenum.pl VERSION:1.2.2
----- spentera.com -----
Host's addresses:
__________________
spentera.com 1200 IN A 74.81.66.104
Name Servers:
______________
dns2.namecheaphosting.com 1200 IN A 199.204.19.79
dns1.namecheaphosting.com 1200 IN A 74.81.65.92
Mail (MX) Servers:
___________________
aspmx2.googlemail.com 1016 IN A 74.125.43.27
alt2.aspmx.l.google.com 293 IN A 74.125.157.27
aspmx3.googlemail.com 3355 IN A 74.125.127.27
aspmx.l.google.com 171 IN A 74.125.53.27
Trying Zone Transfers and getting Bind Versions:
_________________________________________________
Trying Zone Transfer for spentera.com on dns2.namecheaphosting.com ...
AXFR record query failed: NOERROR
dns2.namecheaphosting.com Bind Version: OServed by POWERDNS 2.9.22 $Id: packethandler.cc 1321 2008-12-06 19:44:36Z ahu $
Trying Zone Transfer for spentera.com on dns1.namecheaphosting.com ...
AXFR record query failed: NOERROR
dns1.namecheaphosting.com Bind Version: OServed by POWERDNS 2.9.22 $Id: packethandler.cc 1321 2008-12-06 19:44:36Z ahu $
brute force file not specified, bay. Servers:
______________
dns2.namecheaphosting.com 1200 IN A 199.204.19.79
dns1.namecheaphosting.com 1200 IN A 74.81.65.92
Mail (MX) Servers:
___________________
aspmx2.googlemail.com 1016 IN A 74.125.43.27
alt2.aspmx.l.google.com 293 IN A 74.125.157.27
aspmx3.googlemail.com 3355 IN A 74.125.127.27
aspmx.l.google.com 171 IN A 74.125.53.27
Trying Zone Transfers and getting Bind Versions:
_________________________________________________
Trying Zone Transfer for spentera.com on dns2.namecheaphosting.com ...
AXFR record query failed: NOERROR
dns2.namecheaphosting.com Bind Version: OServed by POWERDNS 2.9.22 $Id: packethandler.cc 1321 2008-12-06 19:44:36Z ahu $
Trying Zone Transfer for spentera.com on dns1.namecheaphosting.com ...
AXFR record query failed: NOERROR
dns1.namecheaphosting.com Bind Version: OServed by POWERDNS 2.9.22 $Id: packethandler.cc 1321 2008-12-06 19:44:36Z ahu $
brute force file not specified, bay.
http://is2c-dojo.net [301] Country[UNITED STATES][US], Title[301 Moved], UncommonHeaders[x-xss-protection,x-frame-options], RedirectLocation[http://www.is2c-dojo.net/], HTTPServer[ghs], X-XSS-Protection[1; mode=block], IP[216.239.32.21], X-Frame-Options[SAMEORIGIN]honestly until now I still not understand what can I do with this information. and unfortunately the server maybe temporary down. I don't know is the matter in my connection or the server really down?? I can't access all the mr.mada web...
URL : http://is2c-dojo.net
Status : 301
Country --------------------------------------------------------------------
Description: GeoIP IP2Country lookup. To refresh DB, replace
IpToCountry.csv and remove country-ips.dat. GeoIP database
from http://software77.net/geo-ip/. Local IPv4 addresses
are represented as ZZ according to an ISO convention.
Lookup code developed by Matthias Wachter for rubyquiz.com
and used with permission.
String : UNITED STATES
Module : US
HTTPServer -----------------------------------------------------------------
Description: HTTP server header string. This plugin also attempts to
identify the operating system from the server header.
String : ghs (from server string)
IP -------------------------------------------------------------------------
Description: IP address of the target, if available.
String : 216.239.32.21
RedirectLocation -----------------------------------------------------------
Description: HTTP Server string location. used with http-status 301 and
302
String : http://www.is2c-dojo.net/ (from location)
Title ----------------------------------------------------------------------
Description: The HTML page title
String : 301 Moved (from page title)
UncommonHeaders ------------------------------------------------------------
Description: Uncommon HTTP server headers. The blacklist includes all
the standard headers and many non standard but common ones.
Interesting but fairly common headers should have their own
plugins, eg. x-powered-by, server and x-aspnet-version.
Info about headers can be found at www.http-stats.com
String : x-xss-protection,x-frame-options (from headers)
X-Frame-Options ------------------------------------------------------------
Description: This plugin retrieves the X-Frame-Options value from the
HTTP header. - More Info:
http://msdn.microsoft.com/en-us/library/cc288472%28VS.85%29.
aspx
String : SAMEORIGIN
X-XSS-Protection -----------------------------------------------------------
Description: This plugin retrieves the X-XSS-Protection value from the
HTTP header. - More Info:
http://msdn.microsoft.com/en-us/library/cc288472%28VS.85%29.
aspx
String : 1; mode=block
http://www.is2c-dojo.net/ ERROR: Timed out execution expired
root@bt:/pentest/enumeration/web/whatweb# ./whatweb -v is2c-dojo.com
http://is2c-dojo.com/ [403]
http://is2c-dojo.com [403] Country[UNITED STATES][US], Title[403 Forbidden], HTTPServer[nginx admin], IP[67.222.154.106]
URL : http://is2c-dojo.com
Status : 403
Country --------------------------------------------------------------------
Description: GeoIP IP2Country lookup. To refresh DB, replace
IpToCountry.csv and remove country-ips.dat. GeoIP database
from http://software77.net/geo-ip/. Local IPv4 addresses
are represented as ZZ according to an ISO convention.
Lookup code developed by Matthias Wachter for rubyquiz.com
and used with permission.
String : UNITED STATES
Module : US
HTTPServer -----------------------------------------------------------------
Description: HTTP server header string. This plugin also attempts to
identify the operating system from the server header.
String : nginx admin (from server string)
IP -------------------------------------------------------------------------
Description: IP address of the target, if available.
String : 67.222.154.106
Title ----------------------------------------------------------------------
Description: The HTML page title
String : 403 Forbidden (from page title)
root@bt:/pentest/enumeration/web/whatweb# ./whatweb -v spentera.com
http://spentera.com ERROR: Timed out execution expired
Tidak ada komentar:
Posting Komentar