Hey Folks, in this tutorial we are going to talk about an web reconnaissance tool called “BillCipher“. It’s an information gathering tool for a Website or IP address, use some ideas from Devploit. BillCipher can work on any operating system if they have and support Python 2, Python 3, and Ruby. It use following combinations of tools.
- Host Finder
- Find Shared DNS Servers
- Get Robots.txt
- Host DNS Finder
- DNS Lookup
- Whois Lookup
- GeoIP Lookup
- Subnet Lookup
- Port Scanner
- Page Links
- Zone Transfer
- HTTP Header
- Reserve IP Lookup
- Email Gathering (use Infoga)
- Subdomain listing (use Sublist3r)
- Find Admin login site (use Breacher)
- Check and Bypass CloudFlare (use HatCloud)
Let’s take a look 🙂 !!
Our first mission will be to install all the dependencies of this tool and for this we will use the following command.
sudo apt update && sudo apt install ruby python python-pip python3 python3-pip
sudo apt install httrack whatweb
After completing the dependency installation we will proceed to the installation of this tool. Just execute the following commands one by one and the tool will be configured automatically.
git clone https://github.com/GitHackTools/BillCipher
pip install -r requirements.txt
pip3 install -r requirements.txt
Done 🙂 !! After executing the following command to boot this tool, it will ask which website or IP address you want to collect information about. You can submit according to you.
After entering the target details we get the following options to collect information about the web application. Now we select the first option and as you can see it has dumped all the sensitive details related to the domain.
WHOIS is a query and response protocol that is widely used for querying databases that store the registered users or assignees of an Internet resource. You can use also use this facility in this tool.
Sometimes the services that are running on the target web server are vulnerable that’s why we take the help of such a tool to take advantage of that vulnerability.
The following feature is used to clone the entire website with just one click.
After download the entire resource of web application they will saved on particular location that you need to host on your apache server to look at view of the clone web page.
Great 🙂 !! As you can see, the cloned web application looks just like the original web application.
Hmm 🙂 !! We cannot cover all the features at the same time, that is why you can use all the features of this tool one by one and gather information at advance level.
A keen learner and passionate IT student. He has done Web designing, CCNA, RedHat, Ethical hacking, Network & web penetration testing. Currently, he is completing his graduation and learning about Red teaming, CTF challenges & Blue teaming.