hostmap 0.2.2 released

Posted on May 09, 2010 in Tools • Tagged with discovery, dns enumeration, dns name, virtual host • 1 min read

I am glad to release hostmap version 0.2.2.
In this version there are a lot of bug fixes and some new features.

Introduction

hostmap is a free, automatic, hostnames and virtual hosts discovery tool written in Ruby and licensed under GNU General Public License version 3 (GPLv3). It’s goal is to enumerate all hostnames and configured virtual hosts on an IP address. The primary users of hostmap are professionals performing vulnerability assessments and penetration tests.

Changes

Some of the new features include:

  • Fixed hostname dictionary “big” list name.
  • Fixed DNS AXFR zone transfer check that was prone …

Continue reading

hostmap 0.2.1 released

Posted on December 26, 2009 in Tools • Tagged with discovery, dns enumeration, dns name, virtual host • 1 min read

I am glad to release hostmap version 0.2.1.
In this version there are a lot of bug fixes and some new features.

Introduction

hostmap is a free, automatic, hostnames and virtual hosts discovery tool written in Ruby and licensed under GNU General Public License version 3 (GPLv3). It’s goal is to enumerate all hostnames and configured virtual hosts on an IP address. The primary users of hostmap are professionals performing vulnerability assessments and penetration tests.

Changes

Some of the new features include:

  • Fixed handling of Errno::ECONNRESET in SSL certificate plugin.
  • Upgraded net-dns to latest version from …

Continue reading

hostmap 0.1 released

Posted on May 14, 2009 in Tools • Tagged with discovery, dns enumeration, dns name, virtual host • 1 min read

I am happy to announce hostmap:

hostmap is a free, automatic, hostnames and virtual hosts discovery tool written in Python by Alessandro `jekil` Tanasi and licensed under GNU General Public License version 3 (GPLv3). It’s goal is to enumerate all hostnames and configured virtual hosts on an IP address. The primary users of hostmap are professionals performing vulnerability assessments and penetration tests.

Take a look at http://hostmap.lonerunners.net/


Continue reading

Virtual host and DNS names enumeration techniques

Posted on January 24, 2009 in Research • Tagged with discovery, dns alias, dns name, enumeration, hostmap, virtual host • 3 min read

Table of Contents

1. Why you need to enumerate
2. Techniques
2.1 DNS enumeration techniques
2.2 Banner grabbing
2.3 SSL/TLS Protocol enumeration techniques
2.4 HTTP Protocol enumeration techniques
2.5 Passive web enumeration techniques
2.6 Active web enumeration techniques

1. Why you need to enumerate

The host name discovery phase is an information gathering act to get a complete and detailed view of target resources and attack points.

During an attack or a penetration test, the attacker needs to known  as much information as possible about the entry points to attack. An entry point …


Continue reading