Saturday, 6 April 2013

Kali linux - recon-ng v1

During my regular net-tool-mining I have stumbled upon this tool which looks like a command line version/free version of Maltego (which ships preinstalled with Kali)... everybody likes cmdline tools better though so why not give it a go :)

What a lovely tool to play around with! As LaNMaSteR53 says on the site "If you want to exploit, use the Metasploit Framework. If you want to Social Engineer, us the Social Engineer Toolkit. If you want to conduct reconnaissance, use Recon-ng!"... and yes we shall!
If you don't have it getting it is as simple as this (I put most of my stuff in /opt so..)

cd /opt; git clone https://LaNMaSteR53@bitbucket.org/LaNMaSteR53/recon-ng.git

cd recon-ng
and finally

./recon-ng.py


Looks familiar doesn't it? Here are some basics:

The basics are the same with msf (Ctr-L, show/use...) Tab completion works which is awesome as well..

We can use set to define global options so we do not have to do that every time

set company "target company ltd"
set domain "target.com"

So..

Lets start collecting some info about the target

use recon/contacts/gather/http/jigsaw
show options
run


This will run and get a bunch of data for your db.. hm.. how do I see that data?

back
show schema


There we go! The table "contacts" is populated with the results from the jigsaw gatherer and with an SQL-like query we can present that

query SELECT * FROM contacts

Additionally you can export that data to something you can manipulate (if you wish to do so)

use reporting/csv_file
show options
set filename ./results.csv
run



Stay tuned... more to come :)

No comments:

Post a Comment