Kail Linux Penetration Testing Training Manual Chapter 1 Information Collection and kail Training
Kail Linux Penetration Testing Training Manual Chapter 3rd Information Collection
Information collection is one of the most important stages of network attacks. To conduct penetration attacks, you need to collect various types of information about the target. The more information is collected, the higher the probability of successful attacks. This chapter describes information collection tools. This document is selected from the "Kail Linux Penetration Testing Training Manual".
3.1 Recon-NG framework
Recon-NG is an open-source Web reconnaissance (Information Collection) framework written by python. The Recon-ng framework is a powerful tool that can be used to automatically collect information and perform network detection. The following describes how to use the Recon-NG detection tool.
Start the Recon-NG framework and execute the following command: This document is selected from the Kail Linux penetration testing training manual.
- Root @ kali :~ # Recon-ng
- _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
- _/_/_/_/_/_/_/_/_/_/_/_/_/
- _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/ _/_/_/
- _/_/_/_/_/_/_/_/_/_/_/_/_/_/
- _/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/_/
- + --------------------------------------------------------------------------- +
- | _ ___ _ |
- | _) | _ |. | _ O _ (_ o _ |
- | _) | (_ | _ \ _ | (_) | _) (/_ (_ | \/|
- |/|
- | Consulting | Research | Development | Training |
- | Http://www.blackhillsinfosec.com |
- + --------------------------------------------------------------------------- +
- [Recon-ng v4.1.4, Tim Tomes (@ LaNMaSteR53)]
- [56] Recon modules
- [5] Reporting modules
- [2] Exploitation modules
- [2] Discovery les
- [1] Import modules
- [Recon-ng] [default]>
The above output information shows the basic information of the Recon-NG framework. For example, in the Recon-NG framework, 56 investigation modules, 5 Report modules, 2 penetration Attack Modules, 2 discovery modules, and 1 import module are included. The [recon-ng] [default]> prompt indicates that the Recon-NG framework is successfully logged on. Now, you can execute various operation commands at the end of the [recon-ng] [default]> prompt. This document is selected from the "Kail Linux Penetration Testing Training Manual".
Before using the Recon-NG framework for the first time, you can use the help command to view all executable commands. As follows:
- [Recon-ng] [default]> help
- Commands (type [help |?] <Topic> ):
- ---------------------------------
- Add Adds records to the database
- Back Exits current prompt level
- Del Deletes records from the database
- Exit Exits current prompt level
- Help Displays this menu
- Keys Manages framework API keys
- Load Loads specified module
- Pdb Starts a Python Debugger session
- Query Queries the database
- Record Records commands to a resource file
- Reload Reloads all modules
- Resource Executes commands from a resource file
- Search Searches available modules
- Set Sets module options
- Shell Executes shell commands
- Show Shows varous framework items
- Spool Spools output to a file
- Unset Unsets module options
- Use Loads specified module
- Workspaces Manages workspaces
The above output information shows the commands that can be run in the Recon-NG framework. This framework is similar to the Metasploit framework and also supports many modules. In this case, you can use the show modules command to view the list of all valid modules. Run the following command: This document is from the "Kail Linux penetration test training manual".
- [Recon-ng] [default]> show modules
- Discovery
- ---------
- Discovery/info_disclosure/cache_snoop
- Discovery/info_disclosure/interesting_files
- Exploitation
- ------------
- Exploitation/injection/command_injector
- Exploitation/injection/xpath_bruter
- Import
- ------
- Import/csv_file
- Recon
- -----
- Recon/companies-contacts/facebook
- Recon/companies-contacts/jigsaw
- Recon/companies-contacts/jigsaw/point_usage
- Recon/companies-contacts/jigsaw/purchase_contact
- Recon/companies-contacts/jigsaw/search_contacts
- Recon/companies-contacts/linkedin_auth
- Recon/contacts-contacts/mangle
- Recon/contacts-contacts/namechk
- Recon/contacts-contacts/rapportive
- Recon/contacts-creds/haveibeenpwned
- ......
- Recon/hosts-hosts/bing_ip
- Recon/hosts-hosts/ip_neighbor
- Recon/hosts-hosts/ipinfodb
- Recon/hosts-hosts/resolve
- Recon/hosts-hosts/reverse_resolve
- Recon/locations-locations/geocode
- Recon/locations-locations/reverse_geocode
- Recon/locations-pushpins/flickr
- Recon/locations-pushpins/picasa
- Recon/locations-pushpins/shodan
- Recon/locations-pushpins/twitter
- Recon/locations-pushpins/youtube
- Recon/netblocks-hosts/reverse_resolve
- Recon/netblocks-hosts/shodan_net
- Recon/netblocks-ports/census_2012
- Reporting
- ---------
- Reporting/csv
- Reporting/html
- Reporting/list
- Reporting/pushpin
- Reporting/xml
- [Recon-ng] [default]>
The output information shows five parts. The number of modules in each part, which can be seen after the Recon-NG framework is started. Users can use different modules to collect various information. This document is selected from the "Kail Linux Penetration Testing Training Manual".
How to install kail Linux on a mobile phone
You are talking about kali. For more information, see docs.kali.org/...y-note.
How does one enable ssh in Kail Linux?
Service ssh start
