Thursday, December 6, 2007

Info & and email gathering with google

There are a couple of neat tools that use google that can help you find email addresses for your client side pen-test...

googleharvester:

cg@segfault:~/evil/enumeration/google$ perl googleharvester0.3.pl
Usage: googleharvester.pl domain or googlefinger --help
cg@segfault:~/evil/enumeration/google$ perl googleharvester0.3.pl learnsecurityonline.com
Searching Results 0
Searching Results 10
Searching Results 20
Searching Results 30
Searching Results 40
Searching Results 50
Searching Results 60
Searching Results 70
Searching Results 80
Searching Results 90
Searching Results 100
Searching Results 110
Searching Results 120
Searching Results 130
Searching Results 140
Searching Results 150
Searching Results 160
Searching Results 170
Searching Results 180
Searching Results 190
encontreGoogleharvester results:

ad8m@learnsecurityonline.com
chr1s@learnsecurityonline.com
learnsecurityonline.com
1nfo@learnsecurityonline.com
j0e@learnsecurityonline.com
...j0e@learnsecurityonline.com

Total accounts: 6
cg@segfault:~/evil/enumeration/google$

goog-mail.py:

cg@segfault:~/evil/enumeration/google$ python goog-mail.py

Extracts emails from google results.

Usage : ./goog-mail.py

cg@segfault:~/evil/enumeration/google$ python goog-mail.py learnsecurityonline.com

+++++++++++++++++++++++++++++++++++++++++++++++++++++
+ Google Web & Group Results:
+++++++++++++++++++++++++++++++++++++++++++++++++++++

ch...@learnsecurityonline.com
chr1s@learnsecurityonline.com
j...@learnsecurityonline.com
m...@learnsecurityonline.com
j0e@learnsecurityonline.com
cg@segfault:~/evil/enumeration/google$

finger-google.py:

cg@segfault:~/evil/enumeration/google/fingergoogle/fingergoogle-1.1$ python fingergoogle.py
Usage: fingergoogle.py [domain]

cg@segfault:~/evil/enumeration/google/fingergoogle/fingergoogle-1.1$ python fingergoogle.py learnsecurityonline.com
Links a navegar: 17
/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&ie=UTF-8&as_qdr=all&start=0&sa=N&filter=0
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=20&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=40&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=60&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=80&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=100&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=120&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=140&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=160&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=180&sa=N&filter=0"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=120&sa=N"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=0&sa=N"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=20&sa=N"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=40&sa=N"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=60&sa=N"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=80&sa=N"
"/search?q=%40learnsecurityonline.com&num=20&hl=es&lr=&as_qdr=all&ie=UTF-8&start=100&sa=N"
To search: learnsecurityonline.com
joe
joe
joe
joe
joe
joe
joe
info
adam
adam
adam
joe
joe
info
adam
joe
joe
joe
joe
joe
joe
joe
joe
Accounts found: 3
joe
info
adam

please dont use me for your "client-side" pen test ;-)

-CG

No comments: