★Kali信息收集~★6.Dmitry:汇总收集

• 概述：

  DMitry（Deepmagic Information Gathering Tool）是一个一体化的信息收集工具。它可以用来收集以下信息：

  1. 端口扫描

  2. whois主机IP和域名信息

  3. 从Netcraft.com获取主机信息

  4. 子域名

  5. 域名中包含的邮件地址

  尽管这些信息可以在Kali中通过多种工具获取，但是使用DMitry可以将收集的信息保存在一个文件中，方便查看。

• 参数：

  

• 常用：
•  获取 whois ，ip，主机信息，子域名，电子邮件

  子域名和电子邮箱依赖谷歌搜索，没有翻墙的可能比较蛋疼一点，可以只用 -win参数

  dnt@Kali:~$ dmitry -winse cnblogs.com

  Deepmagic Information Gathering Tool

  "There be some deep magic going on"

     

  ERROR: Unable to locate Host IP addr. for cnblogs.com

  Continuing with limited modules

  HostIP:

  HostName:cnblogs.com

     

  Gathered Inic-whois information for cnblogs.com

  ---------------------------------

     

  Domain Name: CNBLOGS.COM

  Registrar: 35 TECHNOLOGY CO., LTD

  Sponsoring Registrar IANA ID: 1316

  Whois Server: whois.35.com

  Referral URL: http://www.35.com

  Name Server: NS3.DNSV4.COM

  Name Server: NS4.DNSV4.COM

  Status: clientDeleteProhibited http://www.icann.org/epp#clientDeleteProhibited

  Status: clientTransferProhibited http://www.icann.org/epp#clientTransferProhibited

  Updated Date: 12-nov-2014

  Creation Date: 12-nov-2003

  Expiration Date: 12-nov-2021

     

  >>> Last update of whois database: Thu, 24 Dec 2015 15:40:29 GMT <<<

     

  For more information on Whois status codes, please visit

  https://www.icann.org/resources/pages/epp-status-codes-2014-06-16-en.

     

  NOTICE: The expiration date displayed in this record is the date the

  regi in

  ist Z L Dry ris l

  currently set to expire. This date does not necessarily reflect the expiration

  date of the domain name registrant's agreement with the sponsoring

  registrar. Users may consult the sponsoring registrar's Whois database to

  view the registrar's reported date of expiration for this registration.

     

  TERMS OF USE: You are not authorized to access or query our Whois

  database through the use of electronic processes that are high-volume and

  gis ter dom Z ai Z N n names or

  modify existing registrations; the Data in VeriSign Global Registry

  Services' ("VeriSign") Whois database is provided by VeriSign for

  information purposes only, and to assist persons in obtaining information

  about or related to a domain name registration record. VeriSign does not

  guarantee its accuracy. By submitting a Whois query, you agree to abide

  by the following terms of use: You agree that you may use this Data only

  wi ll you Z us Z N e th

  is cesData

  to: (1) allow, enable, or otherwise support the transmission of mass

  unsolicited, commercial advertising or solicitations via e-mail, telephone,

  or facsimile; or (2) enable high volume, automated, electronic processes

  that apply to VeriSign (or its computer systems). The compilation,

  repackaging, dissemination or other use of this Data is expressly

  prohibited without the prior written consent of VeriSign. You agree not to

  to acce Z N ss or

  query the Whois database except as reasonably necessary to register

  domain names or modify existing registrations. VeriSign reserves the right

  to restrict your access to the Whois database in its sole discretion to ensure

  operational stability. VeriSign may restrict or terminate your access to the

  Whois database for failure to abide by these terms of use. VeriSign

  reserves the right to modify these terms at any time.

     

  Theoma

  ins and

  Registrars.

     

  Gathered Netcraft information for cnblogs.com

  ---------------------------------

     

  Retrieving Netcraft.com information for cnblogs.com

  Netcraft.com Information gathered

     

  Gathered Subdomain information for cnblogs.com

  ---------------------------------

  Searching Google.com:80...

  …………………………………

     

• 扫描网站端口（这个建议使用Nmap）

  dnt@Kali:~$ dmitry -p cnblogs.com -f -b

  Deepmagic Information Gathering Tool

  "There be some deep magic going on"

     

  HostIP:42.121.252.58

  HostName:cnblogs.com

     

  Gathered TCP Port information for 42.121.252.58

  ---------------------------------

     

  Port                State

     

  1/tcp                filtered

  2/tcp                filtered

  3/tcp                filtered

  4/tcp                filtered

  5/tcp                filtered

  6/tcp                filtered

  7/tcp                filtered

  8/tcp                filtered

  9/tcp                filtered

  10/tcp                filtered

  11/tcp                filtered

  12/tcp                filtered

  13/tcp                filtered

  14/tcp                filtered

  15/tcp                filtered

  16/tcp                filtered

  17/tcp                filtered

  18/tcp                filtered

  19/tcp                filtered

  20/tcp                filtered

  21/tcp                filtered

  22/tcp                filtered

  23/tcp                filtered

  24/tcp                filtered

  25/tcp                filtered

  26/tcp                filtered

  27/tcp                filtered

  28/tcp                filtered

  29/tcp                filtered

  30/tcp                filtered

  31/tcp                filtered

  32/tcp                filtered

  33/tcp                filtered

  34/tcp                filtered

  35/tcp                filtered

  36/tcp                filtered

  37/tcp                filtered

  38/tcp                filtered

  39/tcp                filtered

  40/tcp                filtered

  41/tcp                filtered

  42/tcp                filtered

  43/tcp                filtered

  …………………………