Recon-ng interesting
Zur Navigation springen
Zur Suche springen
Search
- [recon-ng][default] > marketplace search interesting
[*] Searching module index for 'interesting'... +--------------------------------------------------------------------------------------------+ | Path | Version | Status | Updated | D | K | +--------------------------------------------------------------------------------------------+ | discovery/info_disclosure/interesting_files | 1.1 | not installed | 2020-01-13 | | | +--------------------------------------------------------------------------------------------+ D = Has dependencies. See info for details. K = Requires keys. See info for details.
Install
- [recon-ng][default] > marketplace install discovery/info_disclosure/interesting_files
Load Modul
- [recon-ng][default] > modules load discovery/info_disclosure/interesting_files
Info
- [recon-ng][default][interesting_files] > info
Name: Interesting File Finder Author: Tim Tomes (@lanmaster53), thrapt (thrapt@gmail.com), Jay Turla (@shipcod3), and Mark Jeffery Version: 1.1 Description: Checks hosts for interesting files in predictable locations. Options: Name Current Value Required Description -------- ------------- -------- ----------- DOWNLOAD True yes download discovered files PORT 80 yes request port PROTOCOL http yes request protocol SOURCE default yes source of input (see 'info' for details) Source Options: default SELECT DISTINCT host FROM hosts WHERE host IS NOT NULL <string> string representing a single input <path> path to a file containing a list of inputs query <sql> database query returning one column of inputs Comments: * Files: robots.txt, sitemap.xml, sitemap.xml.gz, crossdomain.xml, phpinfo.php, test.php, elmah.axd, server-status, jmx-console/, admin-console/, web-console/ * Google Dorks: - inurl:robots.txt ext:txt - inurl:elmah.axd ext:axd intitle:"Error log for" - inurl:server-status "Apache Status"
Settings
- [recon-ng][default][interesting_files] > options set PORT 443
- [recon-ng][default][interesting_files] > options set PROTOCOL https
- [recon-ng][default][interesting_files] > options set SOURCE <DOMAIN>
Run
- [recon-ng][default][interesting_files] > run