Hey Folks, in this tutorial we are going to talk about an web reconnaissance tool called “BillCipher“. It’s an information gathering tool for a Website or IP address, use some ideas from Devploit. BillCipher can work on any operating system if they have and support Python 2, Python 3, and Ruby. It use following combinations of tools.

Features

  • Host Finder
  • IP-Locator
  • Find Shared DNS Servers
  • Get Robots.txt
  • Host DNS Finder
  • DNS Lookup
  • Whois Lookup
  • GeoIP Lookup
  • Subnet Lookup
  • Port Scanner
  • Page Links
  • Zone Transfer
  • HTTP Header
  • Reserve IP Lookup
  • Email Gathering (use Infoga)
  • Subdomain listing (use Sublist3r)
  • Find Admin login site (use Breacher)
  • Check and Bypass CloudFlare (use HatCloud)

Let’s take a look 🙂 !!

Install Dependencies

Our first mission will be to install all the dependencies of this tool and for this we will use the following command.

Installation

After completing the dependency installation we will proceed to the installation of this tool. Just execute the following commands one by one and the tool will be configured automatically.

Done 🙂 !! After executing the following command to boot this tool, it will ask which website or IP address you want to collect information about. You can submit according to you.

DNS Lookup

After entering the target details we get the following options to collect information about the web application. Now we select the first option and as you can see it has dumped all the sensitive details related to the domain.

Whois Lookup

WHOIS is a query and response protocol that is widely used for querying databases that store the registered users or assignees of an Internet resource. You can use also use this facility in this tool.

Port Scan

Sometimes the services that are running on the target web server are vulnerable that’s why we take the help of such a tool to take advantage of that vulnerability.

Website Copier

The following feature is used to clone the entire website with just one click.

After download the entire resource of web application they will saved on particular location that you need to host on your apache server to look at view of the clone web page.

Great 🙂 !! As you can see, the cloned web application looks just like the original web application.

Hmm 🙂 !! We cannot cover all the features at the same time, that is why you can use all the features of this tool one by one and gather information at advance level.

About the Author
Shubham Goyal Certified Ethical Hacker, information security analyst, penetration tester and researcher. Can be Contact on Linkedin.

Leave a Reply

Your email address will not be published. Required fields are marked *