Friday, 7 September 2012

Information Gathering IS2C-DOJO.COM

Posted by at 23:09 Read our previous post

Information Gathering

[+] Target :
[+] Result
  [-] IP Address :
  [-] CMS         : Wordpress
  [-] Themes : Coffee Break 2.4.2
  [-] Server               : Linux 2.6.18
  [-] Webserver        : Nginx
  [-] Open Port         : 80 and 8080
  [-] Cloudflare         :
  [-] Mail                  :

    Active Scanning

    Scanning using NMAP
    root@bt # nmap -sS -A
    nmap is network scanner
    -sS is options for stealth mode
    -A is options for Advanced mode is ip address of

    Nmap scan report for
    Host is up (0.21s latency).
    Not shown: 996 filtered ports
    80/tcp   open   http      cloudflare-nginx
    443/tcp  closed https
    8080/tcp open   http      cloudflare-nginx
    8443/tcp closed https-alt
    Device type: storage-misc
    Running: Linksys Linux 2.6.X
    OS CPE: cpe:/o:linux:kernel:2.6.18
    OS details: Linux 2.6.18
    Network Distance: 10 hops

    TRACEROUTE (using port 443/tcp)
    1   112.32 ms
    2   86.35 ms
    3   ...
    4   277.67 ms
    5   278.70 ms
    6   76.32 ms
    7   117.10 ms (
    8   130.09 ms (
    9   280.93 ms
    10  280.07 ms

    Scanning using Netifera

    1. Add your target into target form, for example and then press the "+" button
    2. Right Click on your target in the left column and select all options what you want.
    3. See in the right column for progress and left column for result

    Scanning using WhatWeb, by run this command:
    ./whatweb -v
    Result :
    URL    :                                                                                                                  
    Status : 200                                                                                                                                   
       Cookies --------------------------------------------------------------------                                                                
            Description: Display the names of cookies in the HTTP headers. The                                                                     
                         values are not returned to save on space.                                                                                 
            String     : wfvt_1801216213                                                                                                           
            String     : __cfduid                                                                                                                  
       Country --------------------------------------------------------------------                                                                
            Description: Shows the country the IPv4 address belongs to. This uses                                                                  
                         the GeoIP IP2Country database from 
                Instructions on updating the 
                         database are in the plugin comments. 
            String     : UNITED STATES
            Module     : US
       Frame ----------------------------------------------------------------------
            Description: This plugin detects instances of frame and iframe HTML 
       HTTPServer -----------------------------------------------------------------
            Description: HTTP server header string. This plugin also attempts to 
                         identify the operating system from the server header. 
            String     : cloudflare-nginx (from server string)
       IP -------------------------------------------------------------------------
            Description: IP address of the target, if available. 
            String     :
       JQuery ---------------------------------------------------------------------
            Description: Javascript library 
            Version    : 1.7.2,2866
       MetaGenerator --------------------------------------------------------------
            Description: This plugin identifies meta generator tags and extracts its 
            String     : Coffee Break 2.4.2,WooFramework 5.3.12
       Title ----------------------------------------------------------------------
            Description: The HTML page title 
            String     : IS2C | Information Security Shinobi Camp (from page title)
       UncommonHeaders ------------------------------------------------------------
            Description: Uncommon HTTP server headers. The blacklist includes all 
                         the standard headers and many non standard but common ones. 
                         Interesting but fairly common headers should have their own 
                         plugins, eg. x-powered-by, server and x-aspnet-version. 
                         Info about headers can be found at 
            String     : x-pingback,link (from headers)
       WooFramework ---------------------------------------------------------------
            Description: WooFramework - theme framework - 
            Version    : 5.3.12
       WordPress ------------------------------------------------------------------
            Description: WordPress is an opensource blogging system commonly used as 
                         a CMS. Homepage: 
       X-Cache --------------------------------------------------------------------
            Description: This plugin identifies the X-Cache HTTP header and extracts 
                         the value. 
            String     : proxy.xxxx.xx.xx
       cloudflare -----------------------------------------------------------------
            Description: ClouldFlare - 
       x-pingback -----------------------------------------------------------------
            Description: A pingback is one of three types of linkbacks, methods for 
                         Web authors to request notification when somebody links to 
                         one of their documents. This enables authors to keep track 
                         of who is linking to, or referring to their articles. Some 
                         weblog software, such as Movable Type, Serendipity, 
                         WordPress and Telligent Community, support automatic 
            String     :

    Scanning using Dmitry
    root@bt# dmitry -w
    Deepmagic Information Gathering Tool
    "There be some deep magic going on"
    Gathered Inic-whois information for
    ^[[B^[[B^[[B   Domain Name: IS2C-DOJO.COM
       Registrar: CV. JOGJACAMP
       Whois Server:
       Referral URL:
       Name Server: IVAN.NS.CLOUDFLARE.COM
       Name Server: RITA.NS.CLOUDFLARE.COM
       Status: clientTransferProhibited
       Updated Date: 01-jun-2012
       Creation Date: 14-jan-2012
       Expiration Date: 14-jan-2013
    >>> Last update of whois database: Mon, 10 Sep 2012 06:33:46 UTC <<<
    Passive Scanning 1. Visual Tracert
    2. Reverse Email Lookup
    3. Reverse IP Domain Check
    4. Whois Lookup
    Creation Date: 14-Jan-2012
    Expiration Date: 14-Jan-2013
    Domain servers in listed order: 5. Scan using
    6. Info from Jl. Raya Janti Ex-BRI Janti Seberang Pasar Angkasa Ring Road Timur Bantul, Yogyakarta 55198 Phone:+6287890364555, Email:pendaftaran[at]


    1. Situs Agen Bola Terbaik | Judi Casino Online | poker uang asli | Bandar Slot Terpercaya Adalah Situs Agen Bola Terbaik | Judi Casino Online | poker uang asli | Bandar Slot Terpercaya, Game Slot Mesin, Agen Sbobet, Agen Ibcbet, Agen Mansion88 sundul77 Merupakan Salah Satu Bandar Bola, Bandar Casino, Poker Online Terpercaya IDNSPORT. Kelebihan Bandar Bola Terbesar Desain Website Menarik, Live Casino Online 24 Jam Non-Stop Bersama Dealer Eropa & Dealer Asia..
      Situs Agen Bola Terbaik | Judi Casino Online | poker uang asli | Bandar Slot Terpercaya, Game Slot Mesin, Agen Sbobet, Agen Ibcbet, Agen Mansion88
      Bolagaming mempunyai tim berpengalaman dalam melayani setiap member yang bergabung di situs judi taruhan bola terbaik ini. Kami menyediakan customer service online 24 jam yang akan menemani anda dan membantu memberikan arahan kepada anda agar mudah saat melakukan pendaftaran. Anda bisa memilih jenis permainan judi taruhan online apa saja sesuai keinginan anda.
      Ayo Bergabung Bersama Situs Judi Taruan Bola Terlengkap Bolagaming
      situs agen bola terbaik,judi casino online,poker uang asli,poker uang asli,agen ibcbet


    ©2012 SECURITY is powered by Blogger - Template designed by Stramaxon - Best SEO Template