DNS Recon Tool written in Ruby
Tags
| attack-pattern: | Dns - T1071.004 Dns - T1590.002 Dns Server - T1583.002 Dns Server - T1584.002 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Whois - T1596.002 Brute Force - T1110 |
Common Information
| Type | Value |
|---|---|
| UUID | d5e4826c-d7f9-4ef0-8ec8-dd7645c6ee74 |
| Fingerprint | 17903d5141f8f685 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | April 3, 2009, midnight |
| Added to db | Jan. 18, 2023, 11:07 p.m. |
| Last updated | Nov. 17, 2024, 12:54 p.m. |
| Headline | Shell is Only the Beginning |
| Title | DNS Recon Tool written in Ruby |
| Detected Hints/Tags/Attributes | 19/1/17 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 5 | darkoperator.com |
|
| Details | 5 | carlos_perez@darkoperator.com |
||
| Details | File | 1 | dnsrecon.rb |
|
| Details | IPv4 | 262 | 192.168.1.1 |
|
| Details | IPv4 | 2 | 192.168.1.253 |
|
| Details | IPv4 | 1 | 198.152.17.90 |
|
| Details | IPv4 | 1 | 209.85.171.100 |
|
| Details | IPv4 | 2 | 74.125.67.100 |
|
| Details | IPv4 | 2 | 74.125.45.100 |
|
| Details | IPv4 | 2 | 216.239.32.10 |
|
| Details | IPv4 | 2 | 216.239.38.10 |
|
| Details | IPv4 | 2 | 216.239.34.10 |
|
| Details | IPv4 | 2 | 216.239.36.10 |
|
| Details | IPv4 | 1 | 72.14.221.25 |
|
| Details | IPv4 | 1 | 209.85.237.25 |
|
| Details | IPv4 | 1 | 64.233.165.25 |
|
| Details | IPv4 | 1 | 209.85.137.25 |