Description: in this video a simple tool metagoofil is used to extract metadata(data about data).
this is an information gathering tool designed for extracting metadata of public documents (pdf,doc,xls,ppt,odp,ods) availables in the target/victim websites.
It will generate a html page with the results of the metadata extracted, plus a list of potential usernames very useful for preparing a bruteforce attack on open services like ftp, pop3,web applications, vpn, etc. Also it will extract a list of disclosed PATHs in the metadata, with this information you can guess OS, network names, Shared resources, etc.
The new version extracts MAC address from Microsoft Office documents. Now you can have an idea of what kind of hardware they are using.
Tags: metagoofil.py , Metadata ,
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.
we can perform educated bruteforce on services like ftp,pop3 etc because this tool provide some possible username list.
This tool is to good we can download all this file format files pdf,doc,xls,ppt,docx,pptx,xlsx Cool tool :)