Web App Direction

This document provides instructions for performing passive and active reconnaissance, using tools like the Wayback Machine, Fierce, dig, theHarvester, OSRFramework, Whois, DNSenum, dnsdumpster, Reverse IP lookups, Nmap, subbrute, WhatWeb, Recon-NG, and dirb. It also includes tips for Google dorking, fingerprinting web application frameworks, identifying HTTP methods, and URL encoding. The goal is to gather as much open source intelligence and information about the target as possible through passive and active methods.

Uploaded by

student

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

78 views

Web App Direction

Uploaded by

student

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 2

Passive recon

-------------

1.waybackMachine-master -> python waybackMachine.py target.com

2.fierce -> fierce --domain target.com
3.dig -> dig target.com ns
4.theHarvester -> theHarvester -d target.com -b google [many more as
google source checkout theHarvester -h]
5.osrframework -> [ domainfy.py ; domainfy.py --whois -n
targetname ; mailfy.py -n targetname ; searchfy.py -q targetname ; usufy.py -n
targetname ; etc]
6.whois -> whois target.com
7.DNSenum -> dnsenum target.com
8.dnsdumpster -> dnsdumpster.com
9.Reverse IP -> yougetsignal.com

Active recon
------------

1.NMap -> nmap --script dns-brute --script-args dns-

brute.domain=target.com
2.NMap -> nmap -sV -p 80 --script http-enum target-ip
3.subbrute -> ./subbrute.py [Time taken]
4.WhatWeb -> WhatWeb target.com

Google Dorks
------------

1.sql error -> "SQL Server Drive][SQL Server]Line 1:Incorrect

syntax near" site:target.com
2.filetype -> site:target.com filetype:pdf
3.word -> intitle:admin or inurl:admin site:target.com
4.extension -> ext:pdf site:target.com
5.particular word in path -> inurl:/download site:target.com
6.intitle -> intitle:"user login" site:target.com
7.backup.sql -> backup.sql intext:"SELECT" ext:sql site:target.com
8.signature -> intext: "target signature"
site:com/net/in/co.in/etc
9.index of -> intitle:"index of" pdf remote code execution

Recon-Ng
--------

-> modules load recon/domains-hosts/hackertarget

-> options set SOURCE target.com
-> run

from bing search

----------------

-> modules load bing_domain_web

-> options set SOURCE target.com
-> run
-> show hosts
Fingerprinting web app framework
--------------------------------

-> whatweb -v target.com

-> Response from requested web server in browser network area and by using burp.
-> Comments in HTML page also revil framework

Identifying HTTP methods using Nmao

-----------------------------------

->nmap --script http-methods -p80,443,8080 target.com

Directory Brute force

---------------------

-> dirb https://target.com

->https://securitytrails.com/
URLS
----

https://pentester.land/list-of-bug-bounty-writeups.html

encoder
-------
https://www.w3schools.com/tags/ref_urlencode.ASP

E-Commerce Website Useful Test Cases
No ratings yet
E-Commerce Website Useful Test Cases
6 pages
Decrypt Files
No ratings yet
Decrypt Files
2 pages
JavaScript Optional Chaining
No ratings yet
JavaScript Optional Chaining
2 pages
Amazon Lightsail Instance To Amazon EC2
No ratings yet
Amazon Lightsail Instance To Amazon EC2
3 pages
Ui Ux
No ratings yet
Ui Ux
13 pages
Swatchdog Installation Steps On wrtlx1
No ratings yet
Swatchdog Installation Steps On wrtlx1
3 pages
Aws Cross Region Replication
No ratings yet
Aws Cross Region Replication
2 pages
Monolithic Applications and Microservices: Applications Are Made of Multiple Components. The
No ratings yet
Monolithic Applications and Microservices: Applications Are Made of Multiple Components. The
4 pages
Load Balanced ProxySQL in Google Cloud
No ratings yet
Load Balanced ProxySQL in Google Cloud
2 pages
Offshore Entities
No ratings yet
Offshore Entities
5 pages
Kotline
No ratings yet
Kotline
7 pages
Creating Lambda
No ratings yet
Creating Lambda
5 pages
Computer Science Project Topics Big List
No ratings yet
Computer Science Project Topics Big List
10 pages
Creating A New Silk UI Application
No ratings yet
Creating A New Silk UI Application
2 pages
Technical Market Indicators Optimization Using Evo
No ratings yet
Technical Market Indicators Optimization Using Evo
8 pages
01-Mini Project
No ratings yet
01-Mini Project
3 pages
Hexagonal Architecture Is Powerful
No ratings yet
Hexagonal Architecture Is Powerful
5 pages
Congratulations Aditya Wasnik - Offer Letter
No ratings yet
Congratulations Aditya Wasnik - Offer Letter
12 pages
USA EB5 Business VISA Complete Info
No ratings yet
USA EB5 Business VISA Complete Info
2 pages
Getting Started With Graylog
No ratings yet
Getting Started With Graylog
2 pages
Checklist Business
No ratings yet
Checklist Business
2 pages
Option Trading Strategies
No ratings yet
Option Trading Strategies
48 pages
Spring Batch
No ratings yet
Spring Batch
2 pages
Dot Net: SI - No Topic Field
No ratings yet
Dot Net: SI - No Topic Field
39 pages
AWS Global Infrastructure
No ratings yet
AWS Global Infrastructure
6 pages
Blog App DB Design
No ratings yet
Blog App DB Design
2 pages
Aws Load Balancing
No ratings yet
Aws Load Balancing
2 pages
List of DevOps Projects
No ratings yet
List of DevOps Projects
1 page
Docker Flash Card
No ratings yet
Docker Flash Card
12 pages
Aws Lambda
No ratings yet
Aws Lambda
5 pages
Software Project List
No ratings yet
Software Project List
12 pages
Top Phishing Techniques
No ratings yet
Top Phishing Techniques
41 pages
Volume vs. Partition - What's The Difference
100% (1)
Volume vs. Partition - What's The Difference
2 pages
Ravindra Bhargava: Personal Website
No ratings yet
Ravindra Bhargava: Personal Website
2 pages
Choosing An NGINX Plus Load-Balancing
No ratings yet
Choosing An NGINX Plus Load-Balancing
8 pages
We Will Be Using
No ratings yet
We Will Be Using
21 pages
AWS Tutorial1
No ratings yet
AWS Tutorial1
3 pages
Red Teamer S Guide To Wi Fi Exploits 1719801009
No ratings yet
Red Teamer S Guide To Wi Fi Exploits 1719801009
31 pages
ML Notes
No ratings yet
ML Notes
12 pages
Recruiting Foreign Workers - MALTA - Mario Xuereb
No ratings yet
Recruiting Foreign Workers - MALTA - Mario Xuereb
28 pages
SonarQube Notes
No ratings yet
SonarQube Notes
3 pages
Shrutika Ruia Alleon Group Offer Letter Signed
No ratings yet
Shrutika Ruia Alleon Group Offer Letter Signed
2 pages
Create System Image Backup in Windows 10
No ratings yet
Create System Image Backup in Windows 10
2 pages
Aws Snowball
No ratings yet
Aws Snowball
5 pages
Adani Group
No ratings yet
Adani Group
142 pages
Java Project List
No ratings yet
Java Project List
5 pages
Artillery API
No ratings yet
Artillery API
25 pages
Comprehensive Strategies For Safeguarding Your Saas Applications
No ratings yet
Comprehensive Strategies For Safeguarding Your Saas Applications
39 pages
Saba Bank List
No ratings yet
Saba Bank List
4 pages
Offer Letter
No ratings yet
Offer Letter
8 pages
Hosting
No ratings yet
Hosting
1 page
DevOps Trainning
No ratings yet
DevOps Trainning
3 pages
NDA - Reverse Flipping
No ratings yet
NDA - Reverse Flipping
6 pages
AWS DynamoDB Notes
No ratings yet
AWS DynamoDB Notes
2 pages
Offshore Finance.
100% (1)
Offshore Finance.
34 pages
Docker-Command Notebook
No ratings yet
Docker-Command Notebook
10 pages
Mahout
No ratings yet
Mahout
6 pages
AWS ExamQuickTips
No ratings yet
AWS ExamQuickTips
2 pages
Myoscp Notes
No ratings yet
Myoscp Notes
12 pages
lec3
No ratings yet
lec3
10 pages
Web Attack Cheat Sheet
No ratings yet
Web Attack Cheat Sheet
42 pages
Do More!: Setup With P2P Cloud Service and Mobile Application
No ratings yet
Do More!: Setup With P2P Cloud Service and Mobile Application
7 pages
Manajemen Keuangan Koperasi
No ratings yet
Manajemen Keuangan Koperasi
26 pages
What Are The Features of Codeigniter.: 4) Explain What Helpers in Codeigniter Are and How You Can Load A Helper File?
No ratings yet
What Are The Features of Codeigniter.: 4) Explain What Helpers in Codeigniter Are and How You Can Load A Helper File?
5 pages
Divyanshu
No ratings yet
Divyanshu
16 pages
Application Security - Secure Software Development
No ratings yet
Application Security - Secure Software Development
7 pages
Computer Lab Assistant
No ratings yet
Computer Lab Assistant
2 pages
IT_Audit_IT_Risk_and_IT_Security_1735280706
No ratings yet
IT_Audit_IT_Risk_and_IT_Security_1735280706
3 pages
Implementing RTP and RTSP Protocol For Video Streaming in JAVA Based Chat Application
No ratings yet
Implementing RTP and RTSP Protocol For Video Streaming in JAVA Based Chat Application
49 pages
Review
92% (13)
Review
3 pages
The Circulatory System. Worksheet
No ratings yet
The Circulatory System. Worksheet
1 page
Howdowesetup: Wayside Shop
No ratings yet
Howdowesetup: Wayside Shop
36 pages
Cybersecurity in The Indian Legal
No ratings yet
Cybersecurity in The Indian Legal
10 pages
What Is G Suite For Education - An Explanation For Teachers (By Kasey Bell)
No ratings yet
What Is G Suite For Education - An Explanation For Teachers (By Kasey Bell)
5 pages
Identity - T-WPS Office
No ratings yet
Identity - T-WPS Office
6 pages
Daily Task of GEMs
No ratings yet
Daily Task of GEMs
1 page
What Are The SEO Benefits For Small Business by Professionals
No ratings yet
What Are The SEO Benefits For Small Business by Professionals
3 pages
Web Technology Question Bank
No ratings yet
Web Technology Question Bank
5 pages
E P Lab Workbook PDF
No ratings yet
E P Lab Workbook PDF
175 pages
Online Examination System
100% (4)
Online Examination System
22 pages
How To Create Multiple Email Accounts: Written by Travis Boylls
No ratings yet
How To Create Multiple Email Accounts: Written by Travis Boylls
8 pages
How To Set Up An FTPS Server in Linux - Open Source
No ratings yet
How To Set Up An FTPS Server in Linux - Open Source
5 pages
How An AI Note-Taker Can Help You Save Time and Stay Focused - Zoom Blog
No ratings yet
How An AI Note-Taker Can Help You Save Time and Stay Focused - Zoom Blog
3 pages
Chapter # 9 Introduction To HTML 5
100% (1)
Chapter # 9 Introduction To HTML 5
4 pages
Mainframe Request Form
No ratings yet
Mainframe Request Form
1 page
Zscaler Deployment and Troubleshooting
No ratings yet
Zscaler Deployment and Troubleshooting
34 pages
35 - Phani SRS
No ratings yet
35 - Phani SRS
15 pages
The Box Model
No ratings yet
The Box Model
6 pages
Planificare Calendaristica Dezvoltare Personala Clasa 2 Aramis
No ratings yet
Planificare Calendaristica Dezvoltare Personala Clasa 2 Aramis
50 pages
Ni Intern Demo Labview Aws
No ratings yet
Ni Intern Demo Labview Aws
29 pages