Within the vast sea of the Internet, targets are easy to find. Most all networks advertise the Internet service provider (ISP) they depend on as well as their design, configuration, hardware types, and potentially vulnerable holes. Keep in mind that most of the normal discovery techniques for information gathering are noninvasive and usually are no more illegal then rattling door handles to check whether doors are open. Depending on the
attackers intensions and the target’s legal resources, most find these will be hard, if not impossible, to prosecute.
In a straightforward information-gathering attack on a company, we’ll use LinkedIn as an example. LinkedIn allows a user to search by company name. Any Linked-In user who currently or formerly worked at the target and associated themselves with the company name in their profile will be listed in the search results. We can then narrow the search by country, state, or region to more narrowly target individuals who work at the division or facility we’re interested in. Once we’ve created a list of targets, we can search for the same individuals using other social media sites—Facebook, for
example.
Installation of Th3inspector –
Th3inspector is an open source information gathering tool available on Github through which you can easily find much information about the target such as Server details, whois info, target IP, Phone number, email, sub-domains etc.
Command: git clone https://github.com/Moham3dRiahi/Th3inspector.git
To run this tool, you need to give the executable permissions to the install.sh file by typing the following command in your terminal.
Command: chmod +x install.sh && ./install.sh
As you can see that, a welcome screen appears with the list of modules:
- [01] Website Information
- [02] Phone Number Information
- [03] Find IP Address And E-mail Server
- [04] Domain Whois Lookup
- [05] Find Website/IP Address Location
- [06] Bypass Cloudflare
- [07] Domain Age Checker
- [08] User Agent Info
- [09] Check Active Services On Resource
- [10] Credit Card Bin Checker
- [11] Subdomain Scanner
- [12] Check E-mail Address
- [13] Content Management System Checker
- [14] Install & Update
Let’s for an example, you want to enumerate the Website Information about the target: type [01]
If want to know the domain age about any target, type [07].
You may also like:- Most Common DNS Record Types and Their Roles
- Top Skills Needed to Become a Cybersecurity Analyst
- Mastering Windows Management with WMIC Commands – Top 20 Examples
- Edit and Compile Code with the Best 5 Code Editors
- 50+ Top DevSecOps Tools You Need To Know
- Learn How to Add Proxy and Multiple Accounts in MoreLogin
- Some Useful PowerShell Cmdlets
- Create Free SSL Certificate – ZEROSSL.COM [2020 Tutorial]
- Generate Self-Signed SSL Certificate with OPENSSL in Kali Linux
- RDP – CredSSP Encryption Oracle Remediation Solution 2020