viernes, 25 de enero de 2013

Scythe – account enumerator

Compartir este artículo:

En el artículo de hoy os traigo una herramienta que nos sirve para enumerar cuentas de usuario en distintos servicios. La herramienta se llama Scythe.

Para empezar deberemos de bajar la herramienta para ello lo mas sencillo es que hagamos un git clone del repositorio del GitHub.

darkmac:fingerprinting marc$ git clone https://github.com/ChrisJohnRiley/Scythe.gitCloning into ‘Scythe’…remote: Counting objects: 458, done.remote: Compressing objects: 100% (145/145), done.remote: Total 458 (delta 306), reused 453 (delta 301)Receiving objects: 100% (458/458), 3.61 MiB | 397 KiB/s, done.Resolving deltas: 100% (306/306), done.darkmac:fingerprinting marc$ cd Scythe/darkmac:Scythe marc$

Ya tenemos el repositorio clonado ahora lo primero que haremos será ver que módulos tenemos disponibles.

——————————————————————————>>>>> Module Information <<<<<——————————————————————————| Name | | Category | | Version |——————————————————————————blogspot.com (Username) social 1delicious.com (Username) blogs 1goodreads.com (Username) blogs 1livejournal.com (Username) blogs 1mahalo.com (Username) blogs 1newsvine.com (Username) blogs 1posterous.com (Username) blogs 1resumebucket.com (Username) blogs 1squidoo.com (Username) blogs 1tumblr.com blogs 1tumblr.com blogs 1Wordpress.com blogs 2ebay.com (Username) commerce 1etsy.com (Username) commerce 1kaboodle.com (Username) commerce 1Github.com (Email) development 2Github.com (username) development 1BackTrack Forum forums 1buzznet.com (Username) forums 1cafemom.com (Username) forums 1colourlovers.com (Username) forums 1deviantart.com (Username) forums 1epinions.com (Username) forums 1families.com (Username) forums 1fanpop.com (Username) forums 1instructables.com (Username) forums 1wikipedia.org (Username) forums 1kongregate.com (Username) games 1dailymotion.com (Username) media 1flickr.com (Username) media 1funnyordie.com (Username) media 1hulu.com (Username) media 1justin.tv (Username) media 1last.fm (Username) media 1photobucket.com (Username) media 1soundcloud.com (Username) media 1twitpic.com (Username) media 1ustream.com (Username) media 1vimeo.com (Username) media 1yfrog.com (Username) media 1youtube.com (Username) media 1zooomr.com (Username) media 1badoo.com (Username) social 1bitly.com (Username) social 1cardcloud.com (Username) social 1disqus.com (Username) social 1facebook.com (Email/Phone) social 4flixster.com (Username) social 1foursquare.com (Username) social 1gather.com (Username) social 1linkedin.com (Username) social 1myspace.com (Username) social 1Reddit.com (username) social 1slideshare.net (Username) social 1stumbleupon.com (Username) social 1Twitter.com (Email/Phone) social 2Twitter.com (username) social 2wefollow.com (Username) social 1xing.com social 2GMail (username) email 1Hushmail (hushmail.com email) email 1Hushmail (hushmail.me email) email 1Hushmail (hush.com email) email 1Hushmail (hush.ai email) email 1Hushmail (mac.hush.com email) email 1Yahoo (yahoo.com email) email 1Yahoo (ymail.com email) email 1Yahoo (rocketmail.com email) email 1Yahoo (yahoo.co.uk email) email 1

Como veis la cantidad de sitios donde podemos hacer el check es impresionante.

Como primer ejemplo lo que haremos será consultar una lista de usuarios en una de las redes sociales, en este caso será Facebook.

darkmac:Scythe marc$ python scythe.py –single facebook.com –accountfile=users.txt,,mm `7MMMM MM,pP”Ybd ,p6″bo `7M’ `MF’mmMMmm MMpMMMb. .gP”Ya8I `” 6M’ OO VA ,V MM MM MM ,M’ Yb`YMMMa. 8M VA ,V MM MM MM 8M”"”"”"L. I8 YM. , VVV MM MM MM YM. ,M9mmmP’ YMbmd’ ,V `Mbmo.JMML JMML.`Mbmmd’,VOOb” ::: account harvester :::ver 0.2.8 (Lazy Lizard)ChrisJohnRiley——————————————————————————[-] Account File ::: users.txt[-] Module Directory ::: ./modules/[-] Single Module ::: facebook.com[-] Verbose ::: Verbose[-] Retries (delay) ::: 1 (30 secs)——————————————————————————[-] Starting to load modules from ./modules/[-] Starting to load modules from ./modules/blogs[-] Starting to load modules from ./modules/commerce[-] Starting to load modules from ./modules/development[-] Starting to load modules from ./modules/forums[-] Starting to load modules from ./modules/games[-] Starting to load modules from ./modules/media[-] Starting to load modules from ./modules/social[+] Extracted module information from facebook.com (Email/Phone)[!] Note [facebook.com (Email/Phone)]:-> Account names must be in email address or telephone number format.-> Permalinks will cause flase positives[-] Starting to load modules from ./modules/webmail——————————————————————————>>>>> Testcases <<<<<——————————————————————————[-] Starting testcases (2 in total)[X] Account seifreed exists on facebook.com (Email/Phone)[X] Account chemaalonso exists on facebook.com (Email/Phone)[-] tests completed in 0.09 seconds[+] 2 matches found—————————————————————————— 

Hemos podido encontrar dos de los usuarios en la red social Facebook.

No solo podremos buscar de manera individual en WordPress, facebook, Wikipedia, sino que podremos buscar por categorías.

darkmac:Scythe marc$ python scythe.py –category=social,blogs –accountfile=users.txt –summary,,mm `7MMMM MM,pP”Ybd ,p6″bo `7M’ `MF’mmMMmm MMpMMMb. .gP”Ya8I `” 6M’ OO VA ,V MM MM MM ,M’ Yb`YMMMa. 8M VA ,V MM MM MM 8M”"”"”"L. I8 YM. , VVV MM MM MM YM. ,M9mmmP’ YMbmd’ ,V `Mbmo.JMML JMML.`Mbmmd’,VOOb” ::: account harvester :::ver 0.2.8 (Lazy Lizard)ChrisJohnRiley——————————————————————————[-] Account File ::: users.txt[-] Module Directory ::: ./modules/[-] Categories ::: social, blogs[-] Verbose ::: Verbose[-] Retries (delay) ::: 1 (30 secs)——————————————————————————[-] Starting to load modules from ./modules/[-] Starting to load modules from ./modules/blogs[+] Extracted module information from blogspot.com (Username)[+] Extracted module information from delicious.com (Username)[+] Extracted module information from goodreads.com (Username)[+] Extracted module information from livejournal.com (Username)[+] Extracted module information from mahalo.com (Username)[+] Extracted module information from newsvine.com (Username)[+] Extracted module information from posterous.com (Username)[+] Extracted module information from resumebucket.com (Username)[+] Extracted module information from squidoo.com (Username)[+] Extracted module information from tumblr.com[+] Extracted module information from tumblr.com[+] Extracted module information from WordPress.com[-] Starting to load modules from ./modules/commerce[-] Starting to load modules from ./modules/development[-] Starting to load modules from ./modules/forums[-] Starting to load modules from ./modules/games[-] Starting to load modules from ./modules/media[-] Starting to load modules from ./modules/social[+] Extracted module information from badoo.com (Username)[+] Extracted module information from bitly.com (Username)[+] Extracted module information from cardcloud.com (Username)[+] Extracted module information from disqus.com (Username)[+] Extracted module information from facebook.com (Email/Phone)[!] Note [facebook.com (Email/Phone)]:-> Account names must be in email address or telephone number format.-> Permalinks will cause flase positives[+] Extracted module information from flixster.com (Username)[+] Extracted module information from foursquare.com (Username)[+] Extracted module information from gather.com (Username)[+] Extracted module information from linkedin.com (Username)[+] Extracted module information from myspace.com (Username)[+] Extracted module information from Reddit.com (username)[+] Extracted module information from slideshare.net (Username)[+] Extracted module information from stumbleupon.com (Username)[+] Extracted module information from Twitter.com (Email/Phone)[+] Extracted module information from Twitter.com (username)[+] Extracted module information from wefollow.com (Username)[+] Extracted module information from xing.com[-] Starting to load modules from ./modules/webmail——————————————————————————>>>>> Testcases <<<<<——————————————————————————[-] Starting testcases (58 in total)[X] Account seifreed exists on mahalo.com (Username)[X] Account seifreed exists on WordPress.com[!] Zero byte response received from bitly.com (Username)[-] [##] 24% complete[!] Zero byte response received from disqus.com (Username)[X] Account seifreed exists on facebook.com (Email/Phone)[X] Account seifreed exists on linkedin.com (Username)[X] Account seifreed exists on Reddit.com (username)[X] Account seifreed exists on slideshare.net (Username)[X] Account seifreed exists on Twitter.com (username)[-] [####] 48% complete[X] Account chemaalonso exists on mahalo.com (Username)[!] Zero byte response received from bitly.com (Username)[-] [#######] 74% complete[!] Zero byte response received from disqus.com (Username)[X] Account chemaalonso exists on facebook.com (Email/Phone)[X] Account chemaalonso exists on slideshare.net (Username)[X] Account chemaalonso exists on Twitter.com (username)[-] [#########] 98% complete[-] tests completed in 0.26 seconds[+] 11 matches found——————————————————————————>>>>> Successful Matches <<<<<————————————————————————————————————————————————————| Module | | Account |——————————————————————————Reddit.com (username) seifreedTwitter.com (username) seifreedTwitter.com (username) chemaalonsoWordpress.com seifreedfacebook.com (Email/Phone) seifreedfacebook.com (Email/Phone) chemaalonsolinkedin.com (Username) seifreedmahalo.com (Username) seifreedmahalo.com (Username) chemaalonsoslideshare.net (Username) seifreedslideshare.net (Username) chemaalonso——————————————————————————

El poder enumerar usuarios nos puede ayudar entre otras cosas para poder realizar un ataque dirigido, entre otras cosas.

No hay comentarios:

Publicar un comentario en la entrada

Related Posts Plugin for WordPress, Blogger...