Re: Scan virtual hosts

From: Adli Abdul Wahid (adli.wahid@gmail.com)
Date: Sun Sep 04 2005 - 02:28:30 EDT

• Next message: Samir Pawaskar: "Re: Nortel Contivity 2600"
• Previous message: Randy: "Rolex for $200?!"
• In reply to: Gareth Davies: "Re: Scan virtual hosts"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

On 8/29/05, Gareth Davies <gareth.davies@mynetsec.com> wrote:
> Geert VAN ACKER wrote:
> >Dear list,
> >is it possible to enumerate all virtual hosts on a given IP address ? I
> >prefer Linux soft.
> >Thx,
 
I've been using DMitry
(http://mor-pah.net/code/download.php?file=DMitry-1.2a.tar.gz) . While
you can get all virtual hosts given an IP, it does some other cool
stuff like whois lookup, subdomains query, etc (see below) from the
command line. Quite useful for your enumeration needs.

-- 
[adli@an-naml 14:21 ~/DMitry-1.2a]$ ./dmitry
Deepmagic Information Gathering Tool
"There be some deep magic going on"
Usage: ./dmitry [-winspfb] [-t 0-9] [-o %host.txt] host
  -o     Save output to %host.txt or to file specified by -o file
  -i     Perform a whois lookup on the IP address of a host
  -w     Perform a whois lookup on the domain name of a host
  -n     Retrieve Netcraft.com information on a host
  -s     Perform a search for possible subdomains
  -e     Perform a search for possible email addresses
  -p     Perform a TCP port scan on a host
* -f     Perform a TCP port scan on a host showing output reporting
filtered ports
* -b     Read in the banner received from the scanned port
* -t 0-9 Set the TTL in seconds when scanning a TCP port ( Default 2 )
*Requires the -p flagged to be passed
-
-- 
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x2DA9DA7F
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 
Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: Samir Pawaskar: "Re: Nortel Contivity 2600"
• Previous message: Randy: "Rolex for $200?!"
• In reply to: Gareth Davies: "Re: Scan virtual hosts"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:49 EDT