August 28, 2021 Ehtools – Wi-Fi kali Penetration Tools Ehtools Framework is a set of serious penetration tools that can be easily explored from the inside. Ethools is working with Kali Linux Wi-Fi Hack. This powerful and simple tool can be used for everything from installing new add-ons to making WPA contact in seconds. Plus, …
August 28, 2021 pyfiscan – web application vulnerability The Pyfiscan web application vulnerability scanner can be used to locate outdated versions of popular web applications on Linux servers. For example, hosting providers monitor their users’ facilities to keep up with security updates. Fingerprints are easy to create and modify because the user can write them …
August 28, 2021 Sitadel – Web Application Security Scanner Sitadel Web Application Security Scanner is basically an update for WAScan making it compatible for python it allows more flexibility for you to write new modules and implement new features : Frontend framework detection Content Delivery Network detection Define Risk Level to allow for scans Plugin …
August 28, 2021 RapidScan – Web Vulnerability Scanner RapidScan For a Pentester, it is very tedious to perform simplified tools analysis (run the security analysis tools one at a time) without automation. If you’re not an automation pro, it’s a herculean task to do a burst scan for every engagement. The ultimate goal of this …
August 28, 2021 Cyber Security Books There are huge amounts of Cyber Security Books ,Some of them are in print for quite a long time, however it’s never past the point where it is possible to peruse them now. On the off chance that you believe that we have missed something. 1- The Tangled Web: A …
August 28, 2021 ScoutSuite : Security Auditing Tool ScoutSuite is a multi-cloud security auditing tool, which enables assessing the security posture of cloud environments, ScoutSuite gathers configuration data for manual inspection and highlights risk areas. ScoutSuite Rather than pouring through dozens of pages on the web consoles,ScoutSuite provides a clear view of the attack surface automatically. Support …
August 28, 2021 ModSecurity Framework FTW The ModSecurity Framework FTW project was launched by researchers from ModSecurity and Fastly to provide rigorous testing of WAF rules. It uses OWASP Core Ruleset V3 as a basis for testing rules on a WAF. Each rule in the rule set is loaded into a YAML file that issues …
August 28, 2021 WAScan – Web Application Scanner is a Open Source web application security scanner. It is designed to find various vulnerabilities using “black-box” method, that means it won’t study the source code of web applications but will work like a fuzzer, scanning the pages of the deployed web application . WAScan is built on …
We are living in digital era. We are penetration testers, we need to protect the world. We need to be digital Sherlock Holmes. For that we need to find a criminal from a small clue. If we get a bad guy’s username or mail then we don’t need to manually search it on the internet. There are some OSINT (Open-Source Intelligence) tools to reduce our effort. Today we are going to talk about a tool called Profil3r on our Kali Linux. Not only for security experts even govt and law enforcement also can use the OSINT tools to gather information about some individuals or organizations from the ocean of internet.
Previously we already talked about Sherlock and Trape, we can use them to find someone on internet with some basic details, in our this article we are going to do the same using Profil3r in a very effective way.
Profil3r is an OSINT tool that allows us to find potential profiles of a person on social networks, as well as their email addresses. This program also alerts us to the presence of a data leak for the found emails.
Installing is very easy, we need to just apply following command on our Kali Linux terminal to install Profil3r on our updated (latest python3 and pip3) system:
In the following screenshot we can see that Profil3r installation is started on our system, it will install the script and some dependencies to run it:
Now we can check it’s help by applying following command:
In the following screenshot we can see the help options of this profil3r tool.
We can see there are nothing much here, we can use -p flag to set the username or name of we are looking for. We can save the report output in HTML, JSON and CSV format using -r flag followed by directory location.
For an example we are looking for Jhon Doe, so we use following command on our terminal:
After pressing Enter ↲ , Profil3r will prompt suggesting some possible usernames, as we can see in the following screenshot:
Here in the above screenshot we can see the suggested usernames, we can use UP⬆ and DOWN⬇ key to move our cursor, to select we need to use SPACE button (we can select multiple), also we can invert them by using I key, and toogle using A key. We need to press ENTER↲ after our selection to continue.
For an example we are going with john.doe username, Then we got a list of various type of sites, as we can see in the following screenshot:
Here also we need to select things we need to search (shown in following screenshot), because we are showing an example here so we are going with just few things. For a better search we need to select everythinng, but that is really time consuming.
After the selection we need to press Enter, it will take some time to complete the scans. In the following screenshot we can see how profil3r is working:
We can see that if founds some mail ids in data leak which may related to our target. After the scanning is complete is will generate a full report on our given path as we can see in the following screenshot:
We can open this reports to see everything in a very organized way. In the following screenshot we have opened the HTML report output on browser.
This is how we can use Profil3r tool on our Kali Linux and easily get information about a human or organizations using the usernames. This OSINT tool is very important for finding someone on the internet.
Love our articles? Make sure to follow us on Twitter and GitHub, we post updates there. To join our KaliLinuxIn family, join our Telegram Group. We are trying to build a community for Linux and Cybersecurity. For anything we always happy to help everyone on the comment section. As we know our comment section is always open to everyone. We read each and every comment and we always reply.
Metagoofil is an awesome Information gathering tool that can be used for extracting lots of information from Word Documents, Presentation files, PDF’s, Excel Sheets, .jpg images and lots of other formats. Metagoofil also can provide a lots of constructive information during the penetration testing just by scanning the gathered files. Lets learn how to extract information from documents, images using Metagoofil on our Kali Linux.
Metagoofil utilizes the Google search engine to get metadata from the documents available in the target domain. Currently, it supports the following document types:
Metagoofil works by executing following actions:
The metadata that can be found includes the following:
This information may be valuable and used later during the penetration testing phase. Metagoofil comes pre-installed with the full version of Kali Linux, if not then we can easily install it from the repository by using sudo apt-get install metagoofil command.
We can see the help (options) of Metagoofil by using following command on our terminal:
Then we can see the help options as in the following screenshot:
Let’s use it and know how to use Metagoofil. First of all we need a target, we took the domain example.com as our target and runs Metagoofil aginst it by using following command:
Here we specify our domain using -d flag, and uses -t flag to specify file types we are looking for, -l to limit the search for every file types (20 in our case), using -n flag we specified that we want to download only 5 files. We can changes the values used in this command as per our requirement.
Now we run the command on our terminal and after sometime (Metagoofil take some time to scan) it will show us the results, as we can see in the following screenshot:
Here our target website is a blank website, so it can’t find anything on this website. But if we provide a healthy target then it can gather a lot of information.
This is how we can gather information using metadata from Google search engine using Metagoofil on our Kali Linux. We should always remember that information gathering is the most crucial part of penetration testing.
Love our articles? Make sure to follow us on Twitter and GitHub, we post updates there. To join our KaliLinuxIn family, join our Telegram Group. We are trying to build a community for Linux and Cybersecurity. For anything we always happy to help everyone on the comment section. As we know our comment section is always open to everyone. We read each and every comment and we always reply.
