Kali Linux course - Information gathering tools.
Hello dosto, iss post me hum discuss karenge Kali Linux ke information gathering tools ke bare me toh chaliye start karte hain
NMAP aur ZenMAP...
NMAP aur ZenMAP bhot ache tools hai ethical hacking ke scanning phase ke liyeNMAP aur ZenMAP practically same tool hi hain par NMAP command line ka use Marta hai aur ZenMAP GUI ka use karta hai.
NMAP ek free utility tool hai network discovery aur security auditing ke liye.
NMAP raw IP packets ka use karta hai ye pata lagaane ke liye ki network par konse hosts available hain aur wo hosts kya services provide karte hain , konsa operating system wo use karrhe hai aur konsa filter / firewall use karrhe hain.
Toh chaliye step by step seekhte hain ki kaise use kare NMAP aur ZenMAP.
Step 1 - open karne ke liye Applications → 01-Information Gathering → nmap or zenmap par jaaye.
Step 2 - agla step hai ki hame ye pata lagaana hai ki target host konsa OS type/version use karrha hai.
OS detection ka parameter hai variable “-O”.
Jo command hum use karenge wo hai
nmap -O 192.168.1.101
iss screenshot me aap dekh sakte hain ki command kaha enter karna hai
step 3 - iss step me apko tcp aur udp open karne hai tcp ports ko scan karne ke liye ye command use karein
nmap -p 1-65535 -T4 192.168.1.101
yaha par parameter "'-p" wo saare ports indicate karta hai jo scan hone hai aur "-T4" speed hai scanning ki.
ab apke saamne esa screenshot hoga jisme green wale saare open ports hai aur red wale saare closed ports par list bhot badi hai isliye red wale show nahi kar paunga.
stealth scan...
stealth scan ya SYN ko half open scan bhi kaha jaata hai kyuki ye tcp three way handshake ko complete nahi karta hai. Hacker target ko ek SYN packet bhejta hai aur agar koi SYN/ACK frame wapas aata hai toh hum ye maante hain ki target connection ko complete karega aur port listening start karega aur agar RST wapas aata hai toh hum ye maanenge ki port ya toh active nahi hai ya toh band hai.
ab SYN scan ko practical karne ke liye aap ye command enter kare
nmap -sS -T4 192.168.1.101
neeche diye gaye screenshot me dekhe ki kaise use karna hai ye command
searchsploit...
searchsploit ek kali linux ka tool hai jiski help se aap exploit database archive me search kar sakte hai terminal se.
isse open karne ke liye Applications → 08-Exploitation Tools → searchsploit par jaaye neeche diye gaye screenshot ki tarah.
terminal open hone ke baad type karein "searchsploit exploit index name".
Dns tools...
iss section me hum kuch dns tools ka use seekhenge jo ki kali linux me hain aue basically ye tools zone transfer aur domain ip resolving issues me help karenge.
Dnsenum.pl
sabse pehla tool hai Dnsenum jo ki ek perl script hai aur ye MX,A aur alag alag records jo ki domain se connected hain usse find karne me help karta hai.
left panel me terminal par click kare
type kare "dnsenum domain name" aur saare record show ho jayenge yaha usne ye record shoe kara
DNSMAP
Dusra tool hai dnsmap jo ki phone number, contacts aur dusre subdomains jo ki iss domain se connected hai unhe find karne me help karta hai jisko hum search karna chahte hain yeh raha ek example.
terminal pe click kare jaise oopar wale screenshot me kara tha aur type kare "dnsmap domain name"
dnstracer
teesra tool hai dnstracer jo ki ye determine karta hai ki koi given DNS kaha se info leta hai ek given hostname se.
terminal pe click karein aur type kare "dnstracer domain name"
LBD tools
LBD (Load balancing detector) tools bohot intresting hote hain kyuki ye detect karte hain ki ek domain DNS ya http me se konsa load balancing use karta hai. ye bhot important hai kyuki agar aapke pass 2 server hai toh unme se koi ek updated nahi hoga aur aap usko exploit kar sakte hain. use karne ke liye steps follow karein.
sabse pehle terminal pe click kare ledt panel pe.
ab type kare "lbd domainname" agar wo result show kare "FOUND" iska matlab server ke pass load balance hai otherwise agar nhi h toh "NOT FOUND" message show hoga.
Hping3
Hping3 ethical hackers bhot use karte hain. ye ping tools ke similar hai par ye unse bhot zyada advanced hai kyuki ye firewalls filters ko bypass karleta hai aur TCP, UDP , ICMP aur raw ip protocols use karta hai. isme ek traceroute mode bhi hai aur isse kisi covered channel ke beech me files bhi share kar sakte hain.
sabse pehle terminal open karein left panel se.
type kare "hping3 -h" aur ye show karega ki command kaise use kare
dusra command hai "hping3 domain or ip -parameter"
iss section me hum kuch dns tools ka use seekhenge jo ki kali linux me hain aue basically ye tools zone transfer aur domain ip resolving issues me help karenge.
Dnsenum.pl
sabse pehla tool hai Dnsenum jo ki ek perl script hai aur ye MX,A aur alag alag records jo ki domain se connected hain usse find karne me help karta hai.
left panel me terminal par click kare
type kare "dnsenum domain name" aur saare record show ho jayenge yaha usne ye record shoe kara
DNSMAP
Dusra tool hai dnsmap jo ki phone number, contacts aur dusre subdomains jo ki iss domain se connected hai unhe find karne me help karta hai jisko hum search karna chahte hain yeh raha ek example.
terminal pe click kare jaise oopar wale screenshot me kara tha aur type kare "dnsmap domain name"
dnstracer
teesra tool hai dnstracer jo ki ye determine karta hai ki koi given DNS kaha se info leta hai ek given hostname se.
terminal pe click karein aur type kare "dnstracer domain name"
LBD tools
LBD (Load balancing detector) tools bohot intresting hote hain kyuki ye detect karte hain ki ek domain DNS ya http me se konsa load balancing use karta hai. ye bhot important hai kyuki agar aapke pass 2 server hai toh unme se koi ek updated nahi hoga aur aap usko exploit kar sakte hain. use karne ke liye steps follow karein.
sabse pehle terminal pe click kare ledt panel pe.
ab type kare "lbd domainname" agar wo result show kare "FOUND" iska matlab server ke pass load balance hai otherwise agar nhi h toh "NOT FOUND" message show hoga.
Hping3
Hping3 ethical hackers bhot use karte hain. ye ping tools ke similar hai par ye unse bhot zyada advanced hai kyuki ye firewalls filters ko bypass karleta hai aur TCP, UDP , ICMP aur raw ip protocols use karta hai. isme ek traceroute mode bhi hai aur isse kisi covered channel ke beech me files bhi share kar sakte hain.
sabse pehle terminal open karein left panel se.
type kare "hping3 -h" aur ye show karega ki command kaise use kare
dusra command hai "hping3 domain or ip -parameter"
Post a Comment