07 March 2012

BackTrack tool review: theHarvester


Note: This is part of a series on BackTrack 5 tool reviews. It is not meant to be an exhaustive analysis of any tool, just a demonstration of the tool using real-world targets.


root@bt:/pentest/enumeration/theharvester# ./theHarvester.py 


*************************************
*TheHarvester Ver. 2.1 (reborn)     *
*Coded by Christian Martorella      *
*Edge-Security Research             *
*cmartorella@edge-security.com      *
*************************************




Usage: theharvester options 


       -d: Domain to search or company name
       -b: Data source (google,bing,bingapi,pgp,linkedin,google-profiles,exalead,all)
       -s: Start in result number X (default 0)
       -v: Verify host name via dns resolution and search for virtual hosts
       -f: Save the results into an HTML and XML file
       -n: Perform a DNS reverse query on all ranges discovered
       -c: Perform a DNS brute force for the domain name
       -t: Perform a DNS TLD expansion discovery
       -e: Use this DNS server
       -l: Limit the number of results to work with(bing goes from 50 to 50 results,
       -h: use SHODAN database to query discovered hosts
            google 100 to 100, and pgp doesn't use this option)


Examples:./theharvester.py -d microsoft.com -l 500 -b google
         ./theharvester.py -d microsoft.com -b pgp
         ./theharvester.py -d microsoft -l 200 -b linkedin


root@bt:/pentest/enumeration/theharvester# ./theHarvester.py -d un.org -b google -l 500 -h -n -c -t


*************************************
*TheHarvester Ver. 2.1 (reborn)     *
*Coded by Christian Martorella      *
*Edge-Security Research             *
*cmartorella@edge-security.com      *
*************************************




[-] Searching in Google:
Searching 0 results...
Searching 100 results...
Searching 200 results...
Searching 300 results...
Searching 400 results...
Searching 500 results...


[+] Emails found:
------------------
treaty@un.org
cocok@un.org
outreach@un.org
navarroperez@un.org
vandenwildenberg@un.org
ecu@un.org
news8@secint00.un.org
abukubi@un.org
@un.org


[+] Hosts found in search engines:
------------------------------------
157.150.185.49:www.un.org
157.150.195.212:careers.un.org
157.150.195.69:jobs.un.org
157.150.195.18:untreaty.un.org
157.150.195.187:comtrade.un.org
157.150.195.187:Comtrade.un.org
157.150.195.186:data.un.org
157.150.195.186:Data.un.org
157.150.185.49:cyberschoolbus.un.org
157.150.195.185:millenniumindicators.un.org
157.150.34.48:daccess-dds-ny.un.org
157.150.34.48:Daccess-dds-ny.un.org
157.150.195.94:mdgs.un.org
157.150.34.66:unasav4.un.org
157.150.185.202:Lists.un.org
157.150.185.201:unasav1.un.org
157.150.185.202:lists.un.org
157.150.185.28:ns1.un.org
157.150.195.76:unic.un.org
157.150.195.76:Unic.un.org
157.150.34.24:webmail02.un.org
193.188.135.35:escwa.un.org
157.150.195.153:unstats.un.org
157.150.195.153:Unstats.un.org
157.150.195.178:odslogin.un.org
157.150.196.65:myun.un.org
157.150.195.130:esa.un.org
157.150.195.105:doc.un.org
98.129.229.168:blogs.un.org
157.150.195.130:webapps01.un.org
157.150.195.193:icsc.un.org
157.150.185.49:Cyberschoolbus.un.org
157.150.195.93:dss.un.org
157.150.185.49:visit.un.org
157.150.185.49:Visit.un.org
157.150.195.94:Mdgs.un.org
157.150.195.30:unpan1.un.org
157.150.34.32:radio.un.org
157.150.34.32:Radio.un.org
157.150.34.48:daccess-ods.un.org
157.150.195.69:Jobs.un.org
157.150.195.39:secint00.un.org
157.150.34.32:endviolence.un.org
157.150.195.75:ochaonline.un.org
157.150.195.75:Ochaonline.un.org
157.150.195.130:Webapps01.un.org
157.150.195.30:Unpan1.un.org


[+] Proposed SET
---------------
[]


[+] Starting active queries:
[-]Performing reverse lookup in :157.150.185.0/24
157.150.185.255[-]Performing reverse lookup in :157.150.195.0/24
157.150.195.255[-]Performing reverse lookup in :157.150.34.0/24
157.150.34.255[-]Performing reverse lookup in :193.188.135.0/24
193.188.135.255[-]Performing reverse lookup in :157.150.196.0/24
157.150.196.255[-]Performing reverse lookup in :98.129.229.0/24
98.129.229.255Hosts found after reverse lookup:
---------------------------------
157.150.185.21:ny-mail-p-av-001.un.org
157.150.185.22:ny-mail-p-av-002.un.org
157.150.185.26:ny-mail-p-cl-001.un.org
157.150.185.27:ny-mail-p-cl-002.un.org
157.150.185.28:ns1.un.org
157.150.185.43:euq1.un.org
157.150.185.55:webmail.un.org
157.150.185.73:sftp.un.org
157.150.185.85:ws.dss.un.org
157.150.185.86:tfs.dss.un.org
157.150.185.87:ldap03.un.org
157.150.185.201:unasav1.un.org
157.150.185.202:unasav2.un.org
157.150.185.203:qa.dss.un.org
157.150.195.1:sms4.un.org
157.150.195.2:itsraudio.un.org
157.150.195.3:secap1515.un.org
157.150.195.5:www1.un.org
157.150.195.6:jsserver.un.org
157.150.195.7:secap262.un.org
157.150.195.8:cgi.un.org
157.150.195.9:www2.un.org
157.150.195.10:secint24.un.org
157.150.195.12:www4.un.org
157.150.195.14:secint05.un.org
157.150.195.16:secdhl01.un.org
157.150.195.18:untreaty.un.org
157.150.195.19:secln079.un.org
157.150.195.22:secint01.un.org
157.150.195.23:srch2.un.org
157.150.195.24:secrs02-195.un.org
157.150.195.25:secfil01.un.org
157.150.195.26:secap514.un.org
157.150.195.27:dcfs17.un.org
157.150.195.28:www0.un.org
157.150.195.29:secap591.un.org
157.150.195.30:secap061.un.org
157.150.195.31:secap254.un.org
157.150.195.33:secint02.un.org
157.150.195.34:secint03.un.org
157.150.195.36:secap068.un.org
157.150.195.37:secext1a.un.org
157.150.195.38:secext1b.un.org
157.150.195.39:secint00.un.org
157.150.195.40:secap093.un.org
157.150.195.41:secint26.un.org
157.150.195.42:secap097.un.org
157.150.195.43:websrch1.un.org
157.150.195.45:secap263.un.org
157.150.195.46:secint10.un.org
157.150.195.47:secint11.un.org
157.150.195.48:secint12.un.org
157.150.195.51:dcfs19.un.org
157.150.195.52:secap622.un.org
157.150.195.53:secap623.un.org
157.150.195.54:secap770.un.org
157.150.195.56:secap248.un.org
157.150.195.57:secap222.un.org
157.150.195.58:secap282.un.org
157.150.195.59:secap624.un.org
157.150.195.60:secap426.un.org
157.150.195.61:secap427.un.org
157.150.195.62:secap428.un.org
157.150.195.63:secap429.un.org
157.150.195.65:secap625.un.org
157.150.195.66:secap640.un.org
157.150.195.67:secap771.un.org
157.150.195.68:secap772.un.org
157.150.195.69:secap838.un.org
157.150.195.70:secap887.un.org
157.150.195.71:secap888.un.org
157.150.195.72:secap961.un.org
157.150.195.75:secap922.un.org
157.150.195.76:secint56.un.org
157.150.195.79:secap150-c3.un.org
157.150.195.81:secap014-c1.un.org
157.150.195.82:secap026.un.org
157.150.195.83:secap027.un.org
157.150.195.86:secap408.un.org
157.150.195.87:secap409.un.org
157.150.195.88:secap410.un.org
157.150.195.90:secap414.un.org
157.150.195.91:training.epas.un.org
157.150.195.92:netscaler-unpa.un.org
157.150.195.93:secap510.un.org
157.150.195.94:secap509.un.org
157.150.195.96:ictsurvey.un.org
157.150.195.97:secap056-c5.un.org
157.150.195.101:secint33.un.org
157.150.195.102:secint34.un.org
157.150.195.103:secint35.un.org
157.150.195.104:secint36.un.org
157.150.195.105:secint38.un.org
157.150.195.106:secint50.un.org
157.150.195.110:escwadr.un.org
157.150.195.111:ns2e.un.org
157.150.195.116:secnet020.un.org
157.150.195.132:secap836.un.org
157.150.195.135:secap308.un.org
157.150.195.136:secap034.un.org
157.150.195.139:secap685-c1.un.org
157.150.195.157:secnet045.un.org
157.150.195.160:secnet050.un.org
157.150.195.163:secap1032.un.org
157.150.195.168:secnet069.un.org
157.150.195.185:secnet086.un.org
157.150.195.186:secnet087.un.org
157.150.195.187:secnet088.un.org
157.150.195.188:secnet089.un.org
157.150.195.190:mobileoffice.un.org
157.150.195.193:secnet105.un.org
157.150.195.194:secnet106.un.org
157.150.195.203:dfs-vbpproxy-03.un.org
157.150.195.204:secap1315.un.org
157.150.195.206:secnet128.un.org
157.150.195.207:unsmin.un.org
157.150.195.208:secnet153.un.org
157.150.195.209:secnet154.un.org
157.150.195.210:secnet156.un.org
157.150.195.211:secnet157.un.org
157.150.195.212:secnet158.un.org
157.150.195.213:secap1439.un.org
157.150.195.214:secent161.un.org
157.150.195.215:secnetdss-tmp.un.org
157.150.195.216:secnet162.un.org
157.150.195.217:secnet163.un.org
157.150.195.218:secnet164.un.org
157.150.195.219:dfs-vbpproxy-01.un.org
157.150.195.220:dfs-vppproxy-02.un.org
157.150.195.221:secnet173.un.org
157.150.195.222:mobileofficebeta.un.org
157.150.195.238:seclg01-195.un.org
157.150.195.239:seclgnd3-195.un.org
157.150.34.20:ny-mail-r-av-001.un.org
157.150.34.21:ny-mail-r-av-002.un.org
157.150.34.31:sftp.un.org
157.150.34.37:ny-mail-r-cl-001.un.org
157.150.34.38:ny-mail-r-cl-002.un.org
157.150.34.40:ldap02.un.org
157.150.34.43:webmaildr.un.org
157.150.34.49:euq2.un.org
157.150.34.57:ns2.un.org
157.150.34.65:unasav3.un.org
157.150.34.66:unasav4.un.org
157.150.34.68:ldap04.un.org
157.150.196.1:intranet.un.org
157.150.196.3:esdstest.un.org
157.150.196.11:secln017.un.org
157.150.196.20:secap092.un.org
157.150.196.22:wwwppbd.un.org
157.150.196.29:intranet3.un.org
157.150.196.34:secap149.un.org
157.150.196.36:galaxy.un.org
157.150.196.38:secap137.un.org
157.150.196.41:galaxy-training.un.org
157.150.196.52:secap179.un.org
157.150.196.53:secap180.un.org
157.150.196.62:eassets.un.org
157.150.196.63:secap220.un.org
157.150.196.65:secap235.un.org
157.150.196.86:iseek.un.org
157.150.196.196:telecommutingapps.un.org
157.150.196.200:unhq-appsuat-c1.un.org
[-] Starting DNS brute force:
zlog.un.org[+] Hosts found after DNS brute force:
[-] Starting DNS TLD expansion:
Searching for: un.aero
[+] Hosts found after DNS TLD expansion:
==========================================
157.150.34.32:un.org
[+] Shodan Database search:
Searching for: 157.150.185.49:www.un.org
Searching for: 157.150.195.212:careers.un.org
Searching for: 157.150.195.69:jobs.un.org
Searching for: 157.150.195.18:untreaty.un.org
Searching for: 157.150.195.187:comtrade.un.org
Searching for: 157.150.195.187:Comtrade.un.org
Searching for: 157.150.195.186:data.un.org
Searching for: 157.150.195.186:Data.un.org
Searching for: 157.150.185.49:cyberschoolbus.un.org
Searching for: 157.150.195.185:millenniumindicators.un.org
Searching for: 157.150.34.48:daccess-dds-ny.un.org
Searching for: 157.150.34.48:Daccess-dds-ny.un.org
Searching for: 157.150.195.94:mdgs.un.org
Searching for: 157.150.34.66:unasav4.un.org
Searching for: 157.150.185.202:Lists.un.org
Searching for: 157.150.185.201:unasav1.un.org
Searching for: 157.150.185.202:lists.un.org
Searching for: 157.150.185.28:ns1.un.org
Searching for: 157.150.195.76:unic.un.org
Searching for: 157.150.195.76:Unic.un.org
Searching for: 157.150.34.24:webmail02.un.org
Searching for: 193.188.135.35:escwa.un.org
Searching for: 157.150.195.153:unstats.un.org
Searching for: 157.150.195.153:Unstats.un.org
Searching for: 157.150.195.178:odslogin.un.org
Searching for: 157.150.196.65:myun.un.org
Searching for: 157.150.195.130:esa.un.org
Searching for: 157.150.195.105:doc.un.org
Searching for: 98.129.229.168:blogs.un.org
Searching for: 157.150.195.130:webapps01.un.org
Searching for: 157.150.195.193:icsc.un.org
Searching for: 157.150.185.49:Cyberschoolbus.un.org
Searching for: 157.150.195.93:dss.un.org
Searching for: 157.150.185.49:visit.un.org
Searching for: 157.150.185.49:Visit.un.org
Searching for: 157.150.195.94:Mdgs.un.org
Searching for: 157.150.195.30:unpan1.un.org
Searching for: 157.150.34.32:radio.un.org
Searching for: 157.150.34.32:Radio.un.org
Searching for: 157.150.34.48:daccess-ods.un.org
Searching for: 157.150.195.69:Jobs.un.org
Searching for: 157.150.195.39:secint00.un.org
Searching for: 157.150.34.32:endviolence.un.org
Searching for: 157.150.195.75:ochaonline.un.org
Searching for: 157.150.195.75:Ochaonline.un.org
Searching for: 157.150.195.130:Webapps01.un.org
Searching for: 157.150.195.30:Unpan1.un.org
Searching for: 157.150.185.21:ny-mail-p-av-001.un.org
Searching for: 157.150.185.22:ny-mail-p-av-002.un.org
Searching for: 157.150.185.26:ny-mail-p-cl-001.un.org
Searching for: 157.150.185.27:ny-mail-p-cl-002.un.org
Searching for: 157.150.185.43:euq1.un.org
Searching for: 157.150.185.55:webmail.un.org
Searching for: 157.150.185.73:sftp.un.org
Searching for: 157.150.185.85:ws.dss.un.org
Searching for: 157.150.185.86:tfs.dss.un.org
Searching for: 157.150.185.87:ldap03.un.org
Searching for: 157.150.185.202:unasav2.un.org
Searching for: 157.150.185.203:qa.dss.un.org
Searching for: 157.150.195.1:sms4.un.org
Searching for: 157.150.195.2:itsraudio.un.org
Searching for: 157.150.195.3:secap1515.un.org
Searching for: 157.150.195.5:www1.un.org
Searching for: 157.150.195.6:jsserver.un.org
Searching for: 157.150.195.7:secap262.un.org
Searching for: 157.150.195.8:cgi.un.org
Searching for: 157.150.195.9:www2.un.org
Searching for: 157.150.195.10:secint24.un.org
Searching for: 157.150.195.12:www4.un.org
Searching for: 157.150.195.14:secint05.un.org
Searching for: 157.150.195.16:secdhl01.un.org
Searching for: 157.150.195.19:secln079.un.org
Searching for: 157.150.195.22:secint01.un.org
Searching for: 157.150.195.23:srch2.un.org
Searching for: 157.150.195.24:secrs02-195.un.org
Searching for: 157.150.195.25:secfil01.un.org
Searching for: 157.150.195.26:secap514.un.org
Searching for: 157.150.195.27:dcfs17.un.org
Searching for: 157.150.195.28:www0.un.org
Searching for: 157.150.195.29:secap591.un.org
Searching for: 157.150.195.30:secap061.un.org
Searching for: 157.150.195.31:secap254.un.org
Searching for: 157.150.195.33:secint02.un.org
Searching for: 157.150.195.34:secint03.un.org
Searching for: 157.150.195.36:secap068.un.org
Searching for: 157.150.195.37:secext1a.un.org
Searching for: 157.150.195.38:secext1b.un.org
Searching for: 157.150.195.40:secap093.un.org
Searching for: 157.150.195.41:secint26.un.org
Searching for: 157.150.195.42:secap097.un.org
Searching for: 157.150.195.43:websrch1.un.org
Searching for: 157.150.195.45:secap263.un.org
Searching for: 157.150.195.46:secint10.un.org
Searching for: 157.150.195.47:secint11.un.org
Searching for: 157.150.195.48:secint12.un.org
Searching for: 157.150.195.51:dcfs19.un.org
Searching for: 157.150.195.52:secap622.un.org
Searching for: 157.150.195.53:secap623.un.org
Searching for: 157.150.195.54:secap770.un.org
Searching for: 157.150.195.56:secap248.un.org
Searching for: 157.150.195.57:secap222.un.org
Searching for: 157.150.195.58:secap282.un.org
Searching for: 157.150.195.59:secap624.un.org
Searching for: 157.150.195.60:secap426.un.org
Searching for: 157.150.195.61:secap427.un.org
Searching for: 157.150.195.62:secap428.un.org
Searching for: 157.150.195.63:secap429.un.org
Searching for: 157.150.195.65:secap625.un.org
Searching for: 157.150.195.66:secap640.un.org
Searching for: 157.150.195.67:secap771.un.org
Searching for: 157.150.195.68:secap772.un.org
Searching for: 157.150.195.69:secap838.un.org
Searching for: 157.150.195.70:secap887.un.org
Searching for: 157.150.195.71:secap888.un.org
Searching for: 157.150.195.72:secap961.un.org
Searching for: 157.150.195.75:secap922.un.org
Searching for: 157.150.195.76:secint56.un.org
Searching for: 157.150.195.79:secap150-c3.un.org
Searching for: 157.150.195.81:secap014-c1.un.org
Searching for: 157.150.195.82:secap026.un.org
Searching for: 157.150.195.83:secap027.un.org
Searching for: 157.150.195.86:secap408.un.org
Searching for: 157.150.195.87:secap409.un.org
Searching for: 157.150.195.88:secap410.un.org
Searching for: 157.150.195.90:secap414.un.org
Searching for: 157.150.195.91:training.epas.un.org
Searching for: 157.150.195.92:netscaler-unpa.un.org
Searching for: 157.150.195.93:secap510.un.org
Searching for: 157.150.195.94:secap509.un.org
Searching for: 157.150.195.96:ictsurvey.un.org
Searching for: 157.150.195.97:secap056-c5.un.org
Searching for: 157.150.195.101:secint33.un.org
Searching for: 157.150.195.102:secint34.un.org
Searching for: 157.150.195.103:secint35.un.org
Searching for: 157.150.195.104:secint36.un.org
Searching for: 157.150.195.105:secint38.un.org
Searching for: 157.150.195.106:secint50.un.org
Searching for: 157.150.195.110:escwadr.un.org
Searching for: 157.150.195.111:ns2e.un.org
Searching for: 157.150.195.116:secnet020.un.org
Searching for: 157.150.195.132:secap836.un.org
Searching for: 157.150.195.135:secap308.un.org
Searching for: 157.150.195.136:secap034.un.org
Searching for: 157.150.195.139:secap685-c1.un.org
Searching for: 157.150.195.157:secnet045.un.org
Searching for: 157.150.195.160:secnet050.un.org
Searching for: 157.150.195.163:secap1032.un.org
Searching for: 157.150.195.168:secnet069.un.org
Searching for: 157.150.195.185:secnet086.un.org
Searching for: 157.150.195.186:secnet087.un.org
Searching for: 157.150.195.187:secnet088.un.org
Searching for: 157.150.195.188:secnet089.un.org
Searching for: 157.150.195.190:mobileoffice.un.org
Searching for: 157.150.195.193:secnet105.un.org
Searching for: 157.150.195.194:secnet106.un.org
Searching for: 157.150.195.203:dfs-vbpproxy-03.un.org
Searching for: 157.150.195.204:secap1315.un.org
Searching for: 157.150.195.206:secnet128.un.org
Searching for: 157.150.195.207:unsmin.un.org
Searching for: 157.150.195.208:secnet153.un.org
Searching for: 157.150.195.209:secnet154.un.org
Searching for: 157.150.195.210:secnet156.un.org
Searching for: 157.150.195.211:secnet157.un.org
Searching for: 157.150.195.212:secnet158.un.org
Searching for: 157.150.195.213:secap1439.un.org
Searching for: 157.150.195.214:secent161.un.org
Searching for: 157.150.195.215:secnetdss-tmp.un.org
Searching for: 157.150.195.216:secnet162.un.org
Searching for: 157.150.195.217:secnet163.un.org
Searching for: 157.150.195.218:secnet164.un.org
Searching for: 157.150.195.219:dfs-vbpproxy-01.un.org
Searching for: 157.150.195.220:dfs-vppproxy-02.un.org
Searching for: 157.150.195.221:secnet173.un.org
Searching for: 157.150.195.222:mobileofficebeta.un.org
Searching for: 157.150.195.238:seclg01-195.un.org
Searching for: 157.150.195.239:seclgnd3-195.un.org
Searching for: 157.150.34.20:ny-mail-r-av-001.un.org
Searching for: 157.150.34.21:ny-mail-r-av-002.un.org
Searching for: 157.150.34.31:sftp.un.org
Searching for: 157.150.34.37:ny-mail-r-cl-001.un.org
Searching for: 157.150.34.38:ny-mail-r-cl-002.un.org
Searching for: 157.150.34.40:ldap02.un.org
Searching for: 157.150.34.43:webmaildr.un.org
Searching for: 157.150.34.49:euq2.un.org
Searching for: 157.150.34.57:ns2.un.org
Searching for: 157.150.34.65:unasav3.un.org
Searching for: 157.150.34.68:ldap04.un.org
Searching for: 157.150.196.1:intranet.un.org
Searching for: 157.150.196.3:esdstest.un.org
Searching for: 157.150.196.11:secln017.un.org
Searching for: 157.150.196.20:secap092.un.org
Searching for: 157.150.196.22:wwwppbd.un.org
Searching for: 157.150.196.29:intranet3.un.org
Searching for: 157.150.196.34:secap149.un.org
Searching for: 157.150.196.36:galaxy.un.org
Searching for: 157.150.196.38:secap137.un.org
Searching for: 157.150.196.41:galaxy-training.un.org
Searching for: 157.150.196.52:secap179.un.org
Searching for: 157.150.196.53:secap180.un.org
Searching for: 157.150.196.62:eassets.un.org
Searching for: 157.150.196.63:secap220.un.org
Searching for: 157.150.196.65:secap235.un.org
Searching for: 157.150.196.86:iseek.un.org
Searching for: 157.150.196.196:telecommutingapps.un.org
Searching for: 157.150.196.200:unhq-appsuat-c1.un.org
Searching for: 157.150.34.32:un.org
[+] Shodan results:
===================
Post a Comment