Tags » Information Gathering

Nmap : Network Mapper (Best and Free) tool for Information Gathering and Scanning.

What Is Nmap?

Nmap is the best and free network scanner tool available in the market. It can be used to determine what hosts are available on the network, what services (application name and version) those hosts are offering, what operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, and dozens of other characteristics. 228 more words


Adminator: Multithreaded Admin Panel Finder

Adminator is the fastest multithreaded Admin panel finder tool. it has many other features : whois , portscanner , intelligence gatherer , HTTP fuzzer. 70 more words

Information Gathering

Asking the Right Questions

That idea, asking the right questions, needs to become a research topic for social sciences/business/government/anything that uses statistics (meaning: everything).

As an example, I am working with an organization that is attached to a national level organization.   324 more words


Python OSINT Platform: OSCAR-F

OSCAR-F is designed to aid in the process of information gathering. It was formed with the idea of not having to open so many tabs in a browser. 342 more words


WHOIS for gathering more domain information

To find out information pertaining to the owners of a domain you can make use of the whois tool:

whois website.domain.domain

Of course you do not have to settle for the information returned in the previous request – you can specify the whois server you would like to query to perhaps return even more information: 8 more words


DNSMAP for DNS Subdomain Enumeration

DNS map is another brute force tool used to enumerate DNS records and DNS subdomains.

dnsmap domain.domain


DNSENUM for DNS Queries

Another tool I want to write about is the DNSENUM tool:

dnsenum website.domain
(This is the most basic of queries)

dnsenum website.domain –dnsserver ns.domain.domain
(Once you find the ns servers responsible for the domain you can specify them manually with the –dnsserver flag) 36 more words