BillCipher – A Information Gathering Tool For a Website

Hey Folks, in this tutorial we are going to talk about an web reconnaissance tool called “BillCipher“. It’s an information gathering tool for a Website or IP address, use some ideas from Devploit. BillCipher can work on any operating system if they have and support Python 2, Python 3, and Ruby. It use following combinations of tools.

Features

Host Finder
IP-Locator
Find Shared DNS Servers
Get Robots.txt
Host DNS Finder
DNS Lookup
Whois Lookup
GeoIP Lookup
Subnet Lookup
Port Scanner
Page Links
Zone Transfer
HTTP Header
Reserve IP Lookup
Email Gathering (use Infoga)
Subdomain listing (use Sublist3r)
Find Admin login site (use Breacher)
Check and Bypass CloudFlare (use HatCloud)

Let’s take a look 🙂 !!

Install Dependencies

Our first mission will be to install all the dependencies of this tool and for this we will use the following command.

sudo apt update && sudo apt install ruby python python-pip python3 python3-pip
sudo apt install httrack whatweb

Installation

After completing the dependency installation we will proceed to the installation of this tool. Just execute the following commands one by one and the tool will be configured automatically.

git clone https://github.com/GitHackTools/BillCipher
cd BillCipher
pip install -r requirements.txt
pip3 install -r requirements.txt

Done 🙂 !! After executing the following command to boot this tool, it will ask which website or IP address you want to collect information about. You can submit according to you.

python3 billcipher.py

DNS Lookup

After entering the target details we get the following options to collect information about the web application. Now we select the first option and as you can see it has dumped all the sensitive details related to the domain.

Whois Lookup

WHOIS is a query and response protocol that is widely used for querying databases that store the registered users or assignees of an Internet resource. You can use also use this facility in this tool.

Port Scan

Sometimes the services that are running on the target web server are vulnerable that’s why we take the help of such a tool to take advantage of that vulnerability.

Website Copier

The following feature is used to clone the entire website with just one click.

After download the entire resource of web application they will saved on particular location that you need to host on your apache server to look at view of the clone web page.

Great 🙂 !! As you can see, the cloned web application looks just like the original web application.

Hmm 🙂 !! We cannot cover all the features at the same time, that is why you can use all the features of this tool one by one and gather information at advance level.

About the Author

Shubham Goyal Certified Ethical Hacker, information security analyst, penetration tester and researcher. Can be Contact on Linkedin.

Shubham Goyal

A keen learner and passionate IT student. He has done Web designing, CCNA, RedHat, Ethical hacking, Network & web penetration testing. Currently, he is completing his graduation and learning about Red teaming, CTF challenges & Blue teaming.