Description: in this video you can learn how to use Passive Recon, webshag, and how to use google to our advantage.
PassiveRecon provides information security professionals with the ability to perform "packetless" discovery of target resources utilizing publicly available information.
https://addons.mozilla.org/en-US/firefox/addon/passiverecon/
Webshag is a multi-threaded, multi-platform web server audit tool. Written in Python, it gathers commonly useful functionalities for web server auditing like website crawling, URL scanning or file fuzzing.
Webshag can be used to scan a web server in HTTP or HTTPS, through a proxy and using HTTP authentication (Basic and Digest). In addition to that it proposes innovative IDS evasion functionalities aimed at making correlation between request more complicated (e.g. use a different random per request HTTP proxy server).
http://www.scrt.ch/en/attack/downloads/webshag
Tags: webshag , passiverecon , google ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.