Recon-ng interesting

Aus Xinux Wiki
Zur Navigation springen Zur Suche springen

Search

  • [recon-ng][default] > marketplace search interesting
[*] Searching module index for 'interesting'...

  +--------------------------------------------------------------------------------------------+
  |                     Path                    | Version |     Status    |  Updated   | D | K |
  +--------------------------------------------------------------------------------------------+
  | discovery/info_disclosure/interesting_files | 1.1     | not installed | 2020-01-13 |   |   |
  +--------------------------------------------------------------------------------------------+

  D = Has dependencies. See info for details.
  K = Requires keys. See info for details.

Install

  • [recon-ng][default] > marketplace install discovery/info_disclosure/interesting_files

Load Modul

  • [recon-ng][default] > modules load discovery/info_disclosure/interesting_files

Info

  • [recon-ng][default][interesting_files] > info
      Name: Interesting File Finder
    Author: Tim Tomes (@lanmaster53), thrapt (thrapt@gmail.com), Jay Turla (@shipcod3), and Mark Jeffery
   Version: 1.1

Description:
  Checks hosts for interesting files in predictable locations.

Options:
  Name      Current Value  Required  Description
  --------  -------------  --------  -----------
  DOWNLOAD  True           yes       download discovered files
  PORT      80             yes       request port
  PROTOCOL  http           yes       request protocol
  SOURCE    default        yes       source of input (see 'info' for details)

Source Options:
  default        SELECT DISTINCT host FROM hosts WHERE host IS NOT NULL
  <string>       string representing a single input
  <path>         path to a file containing a list of inputs
  query <sql>    database query returning one column of inputs

Comments:
  * Files: robots.txt, sitemap.xml, sitemap.xml.gz, crossdomain.xml, phpinfo.php, test.php, elmah.axd,
  server-status, jmx-console/, admin-console/, web-console/
  * Google Dorks:
    - inurl:robots.txt ext:txt
    - inurl:elmah.axd ext:axd intitle:"Error log for"
    - inurl:server-status "Apache Status"

Settings

  • [recon-ng][default][interesting_files] > options set PORT 443
  • [recon-ng][default][interesting_files] > options set PROTOCOL https
  • [recon-ng][default][interesting_files] > options set SOURCE <DOMAIN>

Run

  • [recon-ng][default][interesting_files] > run
Abgerufen von „http://wiki.ixheim.de/index.php?title=Recon-ng_interesting&oldid=26014