This tool searches recursively in google for mail account and gives you them in user list format.

Simple command: fingergoogle.py ubuntu.com

That’s it!

pavs

A tool written in Perl to enumerate information on a domain. It uses the Net::DNS module.

The tool consists of 5 stages:

1. Lookup and return the nameservers of a domain
2. Try zonetransfers on these nameservers
3. Do a “bruteforce” style lookup on the domain with a dictionary
4. From 2) gather IP address information and return a list of class C networks
5. Do a reverse lookup on the nameservers of all addresses in this Class C network space
   (Source: http://www.filip.waeytens.easynet.be/)

Here is some interesting results of DNSenum from ubuntu.com

command: dnsenum.pl ubuntu.com dns.txt

Complete output: www.linuxhaxor.net/dnsenum.html

That’s it!!

pavs

dig (domain information groper) is a flexible tool for interrogating DNS name servers. It performs DNS lookups and displays the answers that are returned from the name server(s) that were queried. Most DNS administrators use dig

to troubleshoot DNS problems because of its flexibility, ease of use and clarity of output. Other lookup tools tend to have less functionality than dig.
(Source: http://linux.die.net/man/1/dig)

Dig has a huge list of options and itself will make a large howto. Which I will go through on a later date. For the sake of sanity I will just give you demonstration of the main intention of dig. There is however quite a large list of custom options.

That’s it!

pavs

This PERL script, by Jimmy Neutron, is great for determining DNS names with Google. This tool, which is essential for network mapping, accepts two somewhat related words, and a domain name as arguments. The two words are sent through Google sets which expands the words into a list of related words. For example, “earth” and “mars” would expand to Venus, Mercury, Jupiter, Saturn, Neptune, Uranus, Pluto. If fed domain foo.com, dnspredict would then attempt to DNS resolve venus.foo.com, mercury.foo.com, etc. This Windows version is standalone, and requires nothing other than this executable.

(Source)

We will try to predict dns name for domain google.com with these arguments:

dnspredict.pl –domain google.com -item1 1 -item2 2

That’s all!!!

pavs