Pen-testing Commands Part 1

Hash Cracking – Jhon

Unzip /usr/share/worllists/rockyou.txt.gz

jhon

jhon --format=raw-md5 /usr/share/worllists/rockyou.txt /rooot/Desktop/hash.txt

Foot-printing Websites or Webserver

Nikto

nikto -e 1 -h mysite.com

-e the evasion switch, 1 random number for encoding, -h for define IP or hostname

The Harvester

theharvester -d example.com -i 50 b google -h myresults.html

-d is the domain or company name to search.

-i limit results. 50.

-b datasource

-h allow us to use the Shodan database to query any discovered hosts.

Leave a comment

Your email address will not be published. Required fields are marked *