DMitry
Un article de Backtrack-fr.
Sommaire |
[modifier] Introduction
DMitry est une boîte à outils orientée web.
On peut faire un whois sur une adresse IP ou un domaine, chercher des informations annexes comme des sous-domaines ou des comptes mails, effectuer un scan de port et lire les bannières renvoyés par le système et les services distants.
[modifier] Usage
dmitry [-winsepfb] [-t 0-9] [-o %host.txt] host
[modifier] Options
-o Sauvegarder la sortie dans %host.txt ou le fichier spécifié par l'option -o fichier -i Faire un Whois sur une adresse IP ou un Host -w Faire un Whois sur le nom de domaine d'un Host -n Afficher les informations de Netcraft.com à propos d'un Host -s Faire une recherche d'hypothétiques sous-domaines existants -e Faire une recherche d'hypothétiques adresses e-mail existantes -p Faire un Scan de Port TCP sur un Host * -f Faire un Scan de Port TCP sur un Host et affiche dans la sortie les ports reportés comme filtrés * -b Lire les bannières renvoyés par les ports scannés * -t 0-9 Définit le TTL (Time To Leave) en seconde lorsqu'un port est scanné (2 par défaut) *Requis l'option -p pour fonctionner
[modifier] Exemple
bt ~ # dmitry -w -n -s -e -p -b www.hotmail.com Deepmagic Information Gathering Tool "There be some deep magic going on" HostIP:212.162.1.124 HostName:www.hotmail.com Gathered Inic-whois information for hotmail.com --------------------------------- Domain Name: HOTMAIL.COM Registrar: TUCOWS INC. Whois Server: whois.tucows.com Referral URL: http://domainhelp.opensrs.net Name Server: NS1.MSFT.NET Name Server: NS2.MSFT.NET Name Server: NS3.MSFT.NET Name Server: NS4.MSFT.NET Name Server: NS5.MSFT.NET Status: clientDeleteProhibited Status: clientTransferProhibited Status: clientUpdateProhibited Updated Date: 13-oct-2006 Creation Date: 27-mar-1996 Expiration Date: 28-mar-2014 >>> Last update of whois database: Wed, 01 Aug 2007 07:33:28 UTC <<< NOTICE: The expiration date displayed in this record is the date the registrar's sponsorship of the domain name registration in the registry is currently set to expire. This date does not necessarily reflect the expiration date of the domain name registrant's agreement with the sponsoring registrar. Users may consult the sponsoring registrar's Whois database to view the registrar's reported date of expiration for this registration. TERMS OF USE: You are not authorized to access or query our Whois database through the use of electronic processes that are high-volume and automated except as reasonably necessary to register domain names or modify existing registrations; the Data in VeriSign Global Registry Services' ("VeriSign") Whois database is provided by VeriSign for information purposes only, and to assist persons in obtaining information about or related to a domain name registration record. VeriSign does not guarantee its accuracy. By submitting a Whois query, you agree to abide by the following terms of use: You agree that you may use this Data only for lawful purposes and that under no circumstances will you use this Data to: (1) allow, enable, or otherwise support the transmission of mass unsolicited, commercial advertising or solicitations via e-mail, telephone, or facsimile; or (2) enable high volume, automated, electronic processes that apply to VeriSign (or its computer systems). The compilation, repackaging, dissemination or other use of this Data is expressly prohibited without the prior written consent of VeriSign. You agree not to use electronic processes that are automated and high-volume to access or query the Whois database except as reasonably necessary to register domain names or modify existing registrations. VeriSign reserves the right to restrict your access to the Whois database in its sole discretion to ensure operational stability. VeriSign may restrict or terminate your access to the Whois database for failure to abide by these terms of use. VeriSign reserves the right to modify these terms at any time. The Registry database contains ONLY .COM, .NET, .EDU domains and Registrars. Gathered Netcraft information for www.hotmail.com --------------------------------- Retrieving Netcraft.com information for www.hotmail.com Operating System: Windows Server 2003 WebServer: Microsoft-IIS/6.0 Uptime Information: Windows 2000 712 - No. Samples 214.98 - Record Max (days) 90.26 - Latest (days) Windows Server 2003 350 - No. Samples 729.42 - Record Max (days) 614.39 - Latest (days) 90-day Moving average 2432 - No. Samples 444.28 - Record Max (days) 407.14 - Latest (days) Netcraft.com Information gathered Gathered Subdomain information for hotmail.com --------------------------------- Searching Google.com:80... HostName:www.hotmail.com HostIP:213.19.160.188 Searching Altavista.com:80... Found 1 possible subdomain(s) for host hotmail.com, Searched 9 pages containing 900 results Gathered E-Mail information for hotmail.com --------------------------------- Searching Google.com:80... F120MBHKzlFlN7SIt860000c121@hotmail.com F84zWvTltXqZV7NhGtK0000a864@hotmail.com ljukivi@hotmail.com lekanoye@hotmail.com Searching Altavista.com:80... Found 4 E-Mail(s) for host hotmail.com, Searched 9 pages containing 900 results Gathered TCP Port information for 212.162.1.124 --------------------------------- Port State 80/tcp open Portscan Finished: Scanned 150 ports, 0 ports were in state closed All scans completed, exiting
