Recon-ng es una poderosa herramienta, la cual permite realizar recopilación de información y reconocimiento de objetivos en la red de manera automática y simple.

En este post instalo recon-ng, pero DOCKERIZADO y luego hago algunos experimentos con el.

Crear un servidor ubuntu en AWS con la llave de initial-pruebas.pem (t3-xlarge)
ssh -i initial-pruebas.pen ubuntu@192.168.100.10


sudo sh -c "echo 'LC_ALL=en_US.UTF-8\nLANG=en_US.UTF-8' >> /etc/environment"
sudo apt-get update
wget -qO- https://get.docker.com/ | sh
sudo gpasswd -a ${USER} docker
exit


ssh -i initial-pruebas.pen ubuntu@192.168.100.10

docker info
mkdir -p /home/ubuntu/ceh/data
cd ceh
chmod 777 data
git clone https://github.com/znb/Docker.git
docker run -d -p 80:80 -v /home/ubuntu/ceh/data:/usr/share/nginx/html nginx
cd Docker/Recon-ng
docker build . -t recon-ng
docker run --rm -ti -v /home/ubuntu/ceh/data:/data  recon-ng

********************** 12 *********************
show modules
help
shell ls /opt/recon-ng
workspaces
workspaces list
workspaces add Goose
workspaces list
add domains certifiedhacker.com
show domains
search netcraft
load recon/domains-hosts/netcraft
run
load bing
load recon/domains-hosts/bing_domain_web
load brute
load recon/domains-hosts/brute_hosts
load reverse
load recon/hosts-hosts/reverse_resolve
run
show hosts
load reporting
load reporting/html
show options
shell ls /opt/recon-ng/.recon-ng/workspaces/Goose
set CREATOR Gustavo Adolfo Arellano Sandoval
set CUSTOMER itera
show options
run
shell ls /opt/recon-ng/.recon-ng/workspaces/Goose
shell cat  /opt/recon-ng/.recon-ng/workspaces/Goose/results.html | grep Gusta
********************** 13 *********************
workspaces list
workspaces add reconnaissance
add domains facebook.com

load whois
load recon/domains-contacts/whois_pocs
show info
show options
set SOURCE facebook.com
run
back
load recon/profiles-profiles/namechk
set SOURCE MarkZuckerberg
run
back
load profil
load recon/profiles-profiles/profiler
set SOURCE MarkZuckerberg
run
back
load repo
load reporting/html
set CREATOR Goose
set CUSTOMER Tavo
shell ls /opt/recon-ng/.recon-ng/workspaces/Tavo
run
shell ls /opt/recon-ng/.recon-ng/workspaces/Tavo
shell cat /opt/recon-ng/.recon-ng/workspaces/Tavo/results.html | grep Goose
shell cp /opt/recon-ng/.recon-ng/workspaces/default/results.html /data
exit
********************** 13 *********************
check http://192.168.100.10/results.html

Leave a Reply

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

(required)

(required)

© 2019 Goose Workshop Suffusion theme by Sayontan Sinha