In our previous post we discussed some GUI tools of kali Linux but in this post we will discuss some command line interface (CLI) tools of kali Linux. As we know that kali Linux is a command line operating system and mostly tools of kali Linux run in CLI mode. So in this way CLI tools have more importance in kali Linux. In this post we will learn main and widely used tools of kali Linux for information gathering. We will discuss about the ports, IP addresses, domains, operating systems, services, their versions by using tools. CLI tools are not so easy like GUI tools in kali Linux but I will discuss in easy and smooth way with important commands to collect information. Mostly hackers use CLI tools because they are more powerful than GUI tools. You must learn CLI tools deeply to collect more and more information about your target to attack on it easily using this deep information. Let’s start.
a) 1. PING
Ping is not a tool it is a command to know the ip address of a website .It is easy method to obtain the ip address of target website to use this command type;
(ping + domain of website)
(ping google.com)
Then it will show the IP address of given domain of website in brackets.
b) 2. IP TRACKER
It is the tool of kali Linux that is written in python language. It is used to find the country, city and location of an IP address. It is used to find the mobile phones, computers and other lost devices if their ip address is known. It is very best, useful and easy to use. You must use it information gathering of a specific ip address. Mostly it is used to find the location of ip address of a website. To install it type the following commands,
(git clone https://GitHub.com/rajkumardusad/IP-TRACKER.git
Then open the IP-TRACKER folder and here you will see the file (install)
(open terminal here and run following command
(chmod +x install)
(./install)
After this IP-tracker will install in your kali Linux.
TO USE IT TYPE THE COMMAND.
(trace -t + ip of target) e.g. (trace -t 192.168.o.1)
Then it will show you the country, city, latitude and longitude etc. of specific ip address.
Output of IP tracker for given ip address
To see location of specific ip on google earth or on google map copy the latitude and paste in google earth search bar then copy and paste longitude in search bar, and press enter and it will show you the location of specific ip on google earth or on google map. But there must be a space between latitude and longitude value when you paste it in search bar.
c) 3. RED HAWK
Red Hawk is a tool of kali Linux that is written in PHP language. It is website information gathering tool. It also tells about the weakness in websites also. It provides a lot of useful information about website, for example ip address, cloud flare server, subdomains , admin login panel , SQL injection weakness etc. It is very important, useful and easy to use. To install it type the following command.
(git clone https://GitHub.com/tubinshubhar/RED_HAWK.git)
After this RED HAWK will clone in your system. To use it open the RED_HAWK folder. Here you will see the file (rhawk.php). Open terminal here and type command.
(php rhawk.php)
Then it will ask you that,(Enter the website you want to scan: ). So type the domain of website you want to scan for example (google.com). Then it will ask you that, (Enter 1 for http or Enter 2 for https). So type 1 or 2 according to website. After this it will show you the scanning options as shown in the figure.
Scanning options of red hawk
Then it will ask you that (choose any scan ok action from the above list
(Enter 0 for basic Recon)
(Enter 1 for who is lookup)
(Enter 2 for geo-ip lookup or for location)
(Enter 3 for Grab Banners)
(Enter 4 for (DNS DOMAIN NAME SERVER LOOKUP)
(Enter 5 for subnet calculate)
(Enter 6 for NMAP port scan)
(Enter7 for subdomain scanner)
(Enter 8 for revers ip lookup and CMS detection)
(Enter 9 for SQLI scanner)
(Enter 1 for Bloggers view)
(Enter 11 for WordPress scan)
(Enter 12 for detection of admin crawlers)
(Enter 13 for MX lookup)
(Enter A to scan everything about the target website)
(Enter F to fix the tool and for whole scanning)
Basic output of red hawk
(Enter U to update Red hawk)
(Enter B to scan other website)
(Enter Q to quit or exit the tool)
d) 4. TH3INSPECTOR
The inspector is a tool of kali Linux written in Perl language. It is used to find the information of websites, phone numbers, ip address and email servers, domain whois lookup, location, user agent info, active services, subdomains etc. it is also used to bypass cloud flare. It is also used as domain age checker, credit card bin checker and CMS checker. To install it type the following commands.
(git clone https://GitHub.com/maham3driahi/th3inspector.git)
Open the (th3inspector) folder. Here you will see a file(install.sh) . run this file using commands;
(chmod +x install.sh)
(./install.sh)
After this th3inspector tool will install in your kali Linux. To run it type the command
(perl th3inspector.pl)
It will show the option as shown in the figure.Below it will ask you to (choose the option that you want to use).
Different options of the inspector tool
(Enter 1 for website information. Then enter the domain of website and it will show you the information of domain).
Information of website in the inspector
(Enter 2 for phone number information.And the inter the phone number with(country code)
(Enter 3 to find ip address and email server). And then type domain of website (example.com)
(Enter 4 to domain whois lookup. And then enter domain of website).
(Enter 5 to find ip or website location. And then enter domain or ip address of website).
(Enter 6 to bypass the cloud flare.And the enter cloud flare ip of the website to bypass).
(Enter 7 to check the age of domain. And then enter the domain of website).
(Enter 8 to check the user agent info. And then enter your target).
(Enter 9 to check the open and close port and services: And the enter the website or its ip).
(Enter 1o to check the credit card bin. And then it will ask you to first or last six digits of credit card number so enter them and obtain the credit card detail).
(Enter 11 to see the subdomains of website. And then enter the main domain of website).
(Enter 12 to check the validity of any email address. And then enter the email. )
(Enter 13 to check CMS means content management system.And then enter domain of website).
(Enter 14 to update your tool).