• We just launched and are currently in beta. Join us as we build and grow the community.

BillCipher – A Information Gathering Tool For a Website

maxpawer20

Privacy Consultant
M
M Rep
0
0
0
Rep
0
M Vouches
0
0
0
Vouches
0
Posts
43
Likes
47
Bits
0
1 MONTH
1 1 MONTH OF SERVICE
LEVEL 1 400 XP
Blue-Orange-and-White-Artist-Photo-Musicians-Collection-YouTube-Thumbnail.png


Hey Folks, in this tutorial we are going to talk about an web reconnaissance tool called “BillCipher“. It’s an information gathering tool for a Website or IP address, use some ideas from Devploit. BillCipher can work on any operating system if they have and support Python 2, Python 3, and Ruby. It use following combinations of tools.

Features
  • Host Finder
  • IP-Locator
  • Find Shared DNS Servers
  • Get Robots.txt
  • Host DNS Finder
  • DNS Lookup
  • Whois Lookup
  • GeoIP Lookup
  • Subnet Lookup
  • Port Scanner
  • Page Links
  • Zone Transfer
  • HTTP Header
  • Reserve IP Lookup
  • Email Gathering (use Infoga)
  • Subdomain listing (use Sublist3r)
  • Find Admin login site (use Breacher)
  • Check and Bypass CloudFlare (use HatCloud)

Let’s take a look 🙂 !!

Install Dependencies

Our first mission will be to install all the dependencies of this tool and for this we will use the following command.

sudo apt update && sudo apt install ruby python python-pip python3 python3-pip
sudo apt install httrack whatweb12sudo apt update&&sudo apt install ruby python python-pip python3 python3-pipsudo apt install httrack whatweb

1-16.png

Installation

After completing the dependency installation we will proceed to the installation of this tool. Just execute the following commands one by one and the tool will be configured automatically.

git clone https://github.com/GitHackTools/BillCipher
cd BillCipher
pip install -r requirements.txt
pip3 install -r requirements.txt1234git clone
https://github.com/GitHackTools/BillCiphercd BillCipherpip install-rrequirements.txtpip3 install-rrequirements.txt

2-16.png


Done 🙂 !! After executing the following command to boot this tool, it will ask which website or IP address you want to collect information about. You can submit according to you.

python3 billcipher.py1python3 billcipher.py

3-16.png

DNS Lookup

After entering the target details we get the following options to collect information about the web application. Now we select the first option and as you can see it has dumped all the sensitive details related to the domain.

4-13.png

Whois Lookup

WHOIS is a query and response protocol that is widely used for querying databases that store the registered users or assignees of an Internet resource. You can use also use this facility in this tool.

5-11.png

Port Scan

Sometimes the services that are running on the target web server are vulnerable that’s why we take the help of such a tool to take advantage of that vulnerability.

6-12.png

Website Copier

The following feature is used to clone the entire website with just one click.

7-8.png


After download the entire resource of web application they will saved on particular location that you need to host on your apache server to look at view of the clone web page.

8-9.png


Great 🙂 !! As you can see, the cloned web application looks just like the original web application.

9-7.png


Hmm 🙂 !! We cannot cover all the features at the same time, that is why you can use all the features of this tool one by one and gather information at advance level.

10-5.png
About the AuthorShubham Goyal Certified Ethical Hacker, information security analyst, penetration tester and researcher. Can be Contact on Linkedin.
 
You must log in or register to reply here.

414,034

309,575

309,584

M Maikel787
Top