Backtrack: DMitry
Revision as of 12:17, 16 January 2011 by Adinugroho (talk | contribs) (New page: DMitry (Deepmagic Information Gathering Tool) adalah aplikasi command line yang berjalan di linux, berfungsi untuk mencari informasi sebanyak mungkin dari sebuah host. Informasi yang dikum...)
DMitry (Deepmagic Information Gathering Tool) adalah aplikasi command line yang berjalan di linux, berfungsi untuk mencari informasi sebanyak mungkin dari sebuah host. Informasi yang dikumpulkan antara lain: subdomain, alamat email, tcp port scan, whois lookup dan sebagainya.
Instalasi
Sudah terinstall di Distro Linux Backtrack.
Pemakaian
Usage: dmitry [-winsepfb] [-t 0-9] [-o %host.txt] host -o Save output to %host.txt or to file specified by -o file -i Perform a whois lookup on the IP address of a host -w Perform a whois lookup on the domain name of a host -n Retrieve Netcraft.com information on a host -s Perform a search for possible subdomains -e Perform a search for possible email addresses -p Perform a TCP port scan on a host * -f Perform a TCP port scan on a host showing output reporting filtered ports * -b Read in the banner received from the scanned port * -t 0-9 Set the TTL in seconds when scanning a TCP port ( Default 2 ) *Requires the -p flagged to be passed
Contoh Output yang dihasilkan:
root@bt:/home/adi# dmitry -snpfbw muslimhackers.net Deepmagic Information Gathering Tool "There be some deep magic going on" HostIP:67.222.30.131 HostName:muslimhackers.net Gathered Inic-whois information for muslimhackers.net --------------------------------- Domain Name: MUSLIMHACKERS.NET Registrar: UK2 GROUP LTD. Whois Server: whois.hostingservicesinc.net Referral URL: http://www.resell.biz Name Server: NS1.CIRCUITDIAGRAM.NET Name Server: NS2.CIRCUITDIAGRAM.NET Status: ok Updated Date: 30-nov-2010 Creation Date: 08-dec-2009 Expiration Date: 08-dec-2011 >>> Last update of whois database: Sun, 16 Jan 2011 05:03:40 UTC <<< NOTICE: The expiration date displayed in this record is the date the registrar's sponsorship of the domain name registration in the registry is currently set to expire. This date does not necessarily reflect the expiration date of the domain name registrant's agreement with the sponsoring registrar. Users may consult the sponsoring registrar's Whois database to view the registrar's reported date of expiration for this registration. TERMS OF USE: You are not authorized to access or query our Whois database through the use of electronic processes that are high-volume and automated except as reasonably necessary to register domain names or modify existing registrations; the Data in VeriSign Global Registry Services' ("VeriSign") Whois database is provided by VeriSign for information purposes only, and to assist persons in obtaining information about or related to a domain name registration record. VeriSign does not guarantee its accuracy. By submitting a Whois query, you agree to abide by the following terms of use: You agree that you may use this Data only for lawful purposes and that under no circumstances will you use this Data to: (1) allow, enable, or otherwise support the transmission of mass unsolicited, commercial advertising or solicitations via e-mail, telephone, or facsimile; or (2) enable high volume, automated, electronic processes that apply to VeriSign (or its computer systems). The compilation, repackaging, dissemination or other use of this Data is expressly prohibited without the prior written consent of VeriSign. You agree not to use electronic processes that are automated and high-volume to access or query the Whois database except as reasonably necessary to register domain names or modify existing registrations. VeriSign reserves the right to restrict your access to the Whois database in its sole discretion to ensure operational stability. VeriSign may restrict or terminate your access to the Whois database for failure to abide by these terms of use. VeriSign reserves the right to modify these terms at any time. The Registry database contains ONLY .COM, .NET, .EDU domains and Gathered Netcraft information for muslimhackers.net --------------------------------- Retrieving Netcraft.com information for muslimhackers.net Netcraft.com Information gathered Gathered Subdomain information for muslimhackers.net --------------------------------- Searching Google.com:80... HostName:www.muslimhackers.net HostIP:67.222.30.131 HostName:forums.muslimhackers.net HostIP:67.222.30.131 HostName:blog.muslimhackers.net HostIP:67.222.30.131 Searching Altavista.com:80... Found 3 possible subdomain(s) for host muslimhackers.net, Searched 0 pages containing 0 results Gathered TCP Port information for 67.222.30.131 --------------------------------- Port State
1/tcp open >> 21/tcp open 25/tcp open 27/tcp filtered 38/tcp filtered 40/tcp filtered 42/tcp filtered 53/tcp open 54/tcp filtered 57/tcp filtered 58/tcp filtered 59/tcp filtered 60/tcp filtered 61/tcp filtered 62/tcp filtered 63/tcp filtered 64/tcp filtered 65/tcp filtered 66/tcp filtered 67/tcp filtered 68/tcp filtered 69/tcp filtered 70/tcp filtered 71/tcp filtered 72/tcp filtered 73/tcp filtered 80/tcp open 90/tcp filtered 101/tcp filtered 110/tcp open 111/tcp open 135/tcp filtered 139/tcp filtered 143/tcp filtered Portscan Finished: Scanned 150 ports, 115 ports were in state closed
All scans completed, exiting