TCtrace is like itrace a traceroute(1) brother – but it uses TCP SYN packets to trace. This makes it possible for you to trace through firewalls if you know one TCP service that is allowed to pass from the outside.

Commands are very simple, with 80 as a default destination port.

I used this command: tctrace -v -i eth0 -D 80 -d google.jp

That’s all

pavs

An SMTP Protocol Hacker. Vrfy.pl uses the vrfy command to verify users/mail accounts on a network by using a list of common system names like root, admin, etc…

Basically it bruteforces SMTP server to find usernames from a list of possible names.

We used the following command vrfy.pl -h smtp.digg.com -l names.txt

That’s how you the do it. :)

pavs

It can search for SMTP server also locates and identifies open relay SMTP servers. It is an all in one program, you tell it how to scan and it does ALL of the work for you. (Website: http://www.cirt.dk/tools/).

First we have to edit the configuration file host_info.txt and put information of the e-mail server we want to scan. In this example I will use nano to edit the configuration file.

After editing the configuration file we just issue the command which is very simple:

RelayScanner.pl -l host_info.txt

What happened over here is that Relayscanner sent fake internal e-mail to the target and prompted the ping-back response from the reciepient. Only after getting response does Relayscanner continues sending more. That 16416 in total !! under default conditions.

RelayScanner has other options and scopes for using built-in plugins. List of options:

That’s all! Thanks for reading.

pavs

A Python wrapper for the Google web API. Allows you to do Google searches, retrieve pages from the Google cache, and ask Google for spelling suggestions.

(Source: http://sourceforge.net/projects/pygoogle/)

Ok there is something you guys should know about Qgoogle. In order for you to use Qgoogle, you need a google SAOP search API key. Unfortunately Google has stopped issuing new API keys. According to their API site (Source). So Unless you already have a key, you are out of luck with Qgoogle.

One more thing to note is that when you try to run Qgoogle in backtrack, they suggest “python googly.py <query>” in order to use it. Well the correct syntex in “qgoogle.py <query>”. But you have to input the API key, assuming you have it. (I don’t have one). If you are using the latest version of Qgoogle (0.6) you can type “qgoogle.py -k <the key here>” or make text file with the key saved in it and call it “googlekey.txt”. With the version Backtrack comes with you have to edit qgoogle.py and edit the line where it says: google.LICENSE_KEY = ” . Just insert license key between the single qoute. Like in this picture:

I used a ajax search API key, which obviously doesn’t work.

That’s it!!

pavs