H4CKING FOR FUN

Information Gathering with Google   Welcome to my second tutorial on Information Gathering In this tutorial we ll be using Google to gather more sensitive information about our target. So first let us start with some basic usage of advanced google searching. Then i will show you how to use them to gather information about your target. inurl InUrl is used to search for any text inside the uri. Many times used by hackers to search for vulnerable scripts and plugins or sensitive information in the website. intext InText is used to search for any text in the body or the source code of the website. It is many times used by hackers to search for particular version of application which is exploitable. filetype FileType is used to search for any type of file which you want to locate in a particualr website or on any particular subject or you can search for any type of file freely. Used by hackers to search for files containing Sensitive information for exploit the websites. intitle I...

Information Gathering with online websites In this tutorial we will gather information about our website using some freely online available websites. We'll be using the Following websites in this tutorial to capture information about our target. 1. Netcraft 2. YouGetSignal 3. Archive.org 4. robots.txt Then the last thing we are going to use is the robots.txt file to view the paths, which web admin wants to hide from the bots and do not want them to be public. All such infomation can many times give your testing a boost start. I will Expain each with example one by one. You can also view the video tutorial for a better understanding. 1. Netcraft This website gives us a detailed information about the web hosting and the Server with detailed information on what is running on the server along with the IP, whoIs information, Server side technologies etc. All this Information should be saved in your reports so that you can use all the information to find the right tests a...

Understanding Information Gathering In this tutorial we will understand and see what is the purpose of Information Gathering before starting to pentest or attack a Website. First of all i will start with a funny but a logical example, let us assume your girlfriend tell you to hunt something for her. You wont go outside and start hunting. The first question you will ask what she actually want you to hunt, lets say fish. So now as you know its a fish then you will goto a place like a sea or a waterfall rather than to grounds in forest. You know to hunt a fish you will need a Fishing Rod and some other important things. In the same manner Web Pentesting is also much like this. When you are going to hunt a website down then you must know what really you are going to deal with, if you know your enemy which you are going to face then you can prepare yourself for that. So this is why Information Gathering is the first phase of Penetration testing. But now arise the question what i...