search

leebaird / discover

Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
MIT License
3.41k stars 819 forks source link

Errors on Passive Domain Recon and on Update #109

Closed whoot closed 6 years ago

whoot commented 6 years ago

Executing the "domain" -> "Passive" feature in "Recon" I get the following errors:

 _____  ___  _____  _____  _____  _    _  _____  _____
|     \  |  |____  |      |     |  \  /  |____  |____/
|_____/ _|_ _____| |_____ |_____|   \/   |_____ |    \_

By Lee Baird

Uses ARIN, dnsrecon, goofile, goog-mail, goohost, theHarvester,
 Metasploit, URLCrazy, Whois, multiple websites, and recon-ng.

[*] Acquire API keys for Bing, Builtwith, Fullcontact, GitHub,
 Google, Hashes, and Shodan for maximum results with recon-ng.

==================================================================

Usage

Company: Target
Domain:  target.com

==================================================================

Company: obfuscated
Domain:  obfuscated
cp: target '/root/data/obfuscated' is not a directory
sed: can't read /root/data/obfuscated/index.htm: No such file or directory
sed: can't read /root/data/obfuscated/index.htm: No such file or directory
sed: can't read /root/data/obfuscated/index.htm: No such file or directory

Do you have a list of names from salesforce to import? (y/N) n

==================================================================

ARIN
     Email                (1/32)
     Names                (2/32)
     Networks             (3/32)

dnsrecon                  (4/32)

goofile                   (5/32)
./discover.sh: line 300: /opt/discover: Is a directory
./discover.sh: line 301: /opt/discover: Is a directory
./discover.sh: line 302: /opt/discover: Is a directory
./discover.sh: line 303: /opt/discover: Is a directory
./discover.sh: line 304: /opt/discover: Is a directory
./discover.sh: line 305: /opt/discover: Is a directory
./discover.sh: line 306: /opt/discover: Is a directory
./discover.sh: line 307: /opt/discover: Is a directory

goog-mail                 (6/32)
./discover.sh: line 319: /opt/discover: Is a directory

goohost
     IP                   (7/32)
./discover.sh: line 324: /opt/discover: Is a directory
     Email                (8/32)
./discover.sh: line 326: /opt/discover: Is a directory
cat: 'report-*': No such file or directory
rm: cannot remove '*-obfuscated.txt': No such file or directory

theHarvester
     Baidu                (9/32)
     Bing                 (10/32)
     Dogpilesearch        (11/32)
     Google               (12/32)
     Google CSE           (13/32)
     Google+              (14/32)
     Google Profiles      (15/32)
     Jigsaw               (16/32)
     LinkedIn             (17/32)
     PGP                  (18/32)
     Yahoo                (19/32)
     All                  (20/32)

Metasploit                (21/32)

URLCrazy                  (22/32)

Whois
     Domain               (23/32)
     IP           (24/32)
dnsdumpster.com           (25/32)
/root/data/obfuscated/assets/images/dnsdumpster.png: No such file or directory
dnswatch.info             (26/32)
./discover.sh: line 543: /root/data/obfuscated/data/records.htm: No such file or directory
email-format.com          (27/32)
intodns.com               (28/32)
./discover.sh: line 551: /root/data/obfuscated/pages/config.htm: No such file or directory
sed: can't read /root/data/obfuscated/pages/config.htm: No such file or directory
sed: can't read /root/data/obfuscated/pages/config.htm: No such file or directory
sed: can't read /root/data/obfuscated/pages/config.htm: No such file or directory
sed: can't read /root/data/obfuscated/pages/config.htm: No such file or directory
sed: can't read /root/data/obfuscated/pages/config.htm: No such file or directory
netcraft.com              (29/32)
./discover.sh: line 571: /root/data/obfuscated/pages/netcraft.htm: No such file or directory
./discover.sh: line 572: /root/data/obfuscated/pages/netcraft.htm: No such file or directory
./discover.sh: line 573: /root/data/obfuscated/pages/netcraft.htm: No such file or directory
./discover.sh: line 574: /root/data/obfuscated/pages/netcraft.htm: No such file or directory
ultratools.com            (30/32)
./discover.sh: line 601: /root/data/obfuscated/data/zonetransfer.htm: No such file or directory
./discover.sh: line 602: /root/data/obfuscated/data/zonetransfer.htm: No such file or directory
Registered Domains        (31/32)
./discover.sh: line 667: /root/data/obfuscated/data/registered-domains.htm: No such file or directory
./discover.sh: line 668: /root/data/obfuscated/data/registered-domains.htm: No such file or directory

recon-ng                  (32/32)

cat: /opt/discover: Is a directory
usage: recon-ng [-h] [-v] [-w workspace] [-r filename] [--no-check]
                [--no-analytics]
recon-ng: error: unrecognized arguments: /root/.local/share/Trash/files/discover/passive.rc
grep: /tmp/emails: No such file or directory
grep: /tmp/names: No such file or directory
grep: /tmp/networks: No such file or directory
grep: /tmp/subdomains: No such file or directory
cat: networks-tmp: No such file or directory
./discover.sh: line 770: /root/data/obfuscated/data/hosts.htm: No such file or directory
./discover.sh: line 770: /root/data/obfuscated/data/hosts.htm: No such file or directory
./discover.sh: line 786: /root/data/obfuscated/data/emails.htm: No such file or directory
./discover.sh: line 786: /root/data/obfuscated/data/emails.htm: No such file or directory
./discover.sh: line 798: /root/data/obfuscated/data/names.htm: No such file or directory
./discover.sh: line 798: /root/data/obfuscated/data/names.htm: No such file or directory
./discover.sh: line 829: /root/data/obfuscated/data/registered-domains.htm: No such file or directory
./discover.sh: line 829: /root/data/obfuscated/data/registered-domains.htm: No such file or directory
./discover.sh: line 841: /root/data/obfuscated/data/squatting.htm: No such file or directory
./discover.sh: line 841: /root/data/obfuscated/data/squatting.htm: No such file or directory
./discover.sh: line 853: /root/data/obfuscated/data/subdomains.htm: No such file or directory
./discover.sh: line 853: /root/data/obfuscated/data/subdomains.htm: No such file or directory
./discover.sh: line 867: /root/data/obfuscated/data/xls.htm: No such file or directory
./discover.sh: line 867: /root/data/obfuscated/data/xls.htm: No such file or directory
./discover.sh: line 879: /root/data/obfuscated/data/pdf.htm: No such file or directory
./discover.sh: line 879: /root/data/obfuscated/data/pdf.htm: No such file or directory
./discover.sh: line 891: /root/data/obfuscated/data/ppt.htm: No such file or directory
./discover.sh: line 891: /root/data/obfuscated/data/ppt.htm: No such file or directory
./discover.sh: line 903: /root/data/obfuscated/data/txt.htm: No such file or directory
./discover.sh: line 903: /root/data/obfuscated/data/txt.htm: No such file or directory
./discover.sh: line 915: /root/data/obfuscated/data/doc.htm: No such file or directory
./discover.sh: line 915: /root/data/obfuscated/data/doc.htm: No such file or directory
./discover.sh: line 924: /root/data/obfuscated/data/whois-domain.htm: No such file or directory
./discover.sh: line 924: /root/data/obfuscated/data/whois-domain.htm: No such file or directory
./discover.sh: line 934: /root/data/obfuscated/data/whois-ip.htm: No such file or directory
./discover.sh: line 934: /root/data/obfuscated/data/whois-ip.htm: No such file or directory
./discover.sh: line 939: /root/data/obfuscated/data/passive-recon.htm: No such file or directory
./discover.sh: line 939: /root/data/obfuscated/data/passive-recon.htm: No such file or directory
/root/data/obfuscated/assets/images/robtex.png: No such file or directory

==================================================================

***Scan complete.***

The supporting data folder is located at /root/data/obfuscated/

Additionally, the following error is thrown when executing update.sh:

Updating BloodHound.
error: Pulling is not possible because you have unmerged files.
hint: Fix them up in the work tree, and then use 'git add/rm <file>'
hint: as appropriate to mark resolution and make a commit.
fatal: Exiting because of an unresolved conflict.
leebaird commented 6 years ago

I ran both Passive recon and the update script today with no errors.

x3nc0n commented 6 years ago

I am getting similar errors during passive recon, but not the BloodHound update error.

x3nc0n commented 6 years ago 
|     \  |  |____  |      |     |  \  /  |____  |____/
|_____/ _|_ _____| |_____ |_____|   \/   |_____ |    \_

By Lee Baird

Uses ARIN, dnsrecon, goofile, goog-mail, goohost, theHarvester,
 Metasploit, URLCrazy, Whois, multiple websites, and recon-ng.

[*] Acquire API keys for Bing, Builtwith, Fullcontact, GitHub,
 Google, Hashes, and Shodan for maximum results with recon-ng.

==================================================================

Usage

Company: Target
Domain:  target.com

==================================================================

Company: Contoso
Domain:  contoso.com
cp: target '/root/data/contoso.com' is not a directory
sed: can't read /root/data/contoso.com/index.htm: No such file or directory
sed: can't read /root/data/contoso.com/index.htm: No such file or directory
sed: can't read /root/data/contoso.com/index.htm: No such file or directory
L1ghtn1ng commented 6 years ago

Can you please try running the passive recon with the company name in lower case and if you abrivated the company name should also help as well

From: xencon notifications@github.com Sent: Tuesday, October 17, 2017 6:42:24 PM To: leebaird/discover Cc: Subscribed Subject: Re: [leebaird/discover] Errors on Passive Domain Recon and on Update (#109)

| \ | | | | | \ / | |/ |____/ | | | || \/ |____ | \ By Lee Baird Uses ARIN, dnsrecon, goofile, goog-mail, goohost, theHarvester, Metasploit, URLCrazy, Whois, multiple websites, and recon-ng. [*] Acquire API keys for Bing, Builtwith, Fullcontact, GitHub, Google, Hashes, and Shodan for maximum results with recon-ng. ================================================================== Usage Company: Target Domain: target.com ================================================================== Company: Contoso Domain: contoso.com cp: target '/root/data/contoso.com' is not a directory sed: can't read /root/data/contoso.com/index.htm: No such file or directory sed: can't read /root/data/contoso.com/index.htm: No such file or directory sed: can't read /root/data/contoso.com/index.htm: No such file or directory

— You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHubhttps://github.com/leebaird/discover/issues/109#issuecomment-337301673, or mute the threadhttps://github.com/notifications/unsubscribe-auth/ADddQut8FNhomuqqLYgkjkMmQr7NEZjpks5stOYNgaJpZM4PkVoK.

ghost commented 6 years ago

That seems to resolve the initial errors. Still seeing errors with theharvester:

./discover.sh: line 364: /usr/share/theharvester/theHarvester.py: Permission denied Bing (10/32) ./discover.sh: line 366: /usr/share/theharvester/theHarvester.py: Permission denied Dogpilesearch (11/32) ./discover.sh: line 368: /usr/share/theharvester/theHarvester.py: Permission denied Google (12/32) ./discover.sh: line 370: /usr/share/theharvester/theHarvester.py: Permission denied Google CSE (13/32) ./discover.sh: line 372: /usr/share/theharvester/theHarvester.py: Permission denied Google+ (14/32) ./discover.sh: line 374: /usr/share/theharvester/theHarvester.py: Permission denied Google Profiles (15/32) ./discover.sh: line 376: /usr/share/theharvester/theHarvester.py: Permission denied Jigsaw (16/32) ./discover.sh: line 378: /usr/share/theharvester/theHarvester.py: Permission denied LinkedIn (17/32) ./discover.sh: line 380: /usr/share/theharvester/theHarvester.py: Permission denied ./discover.sh: line 381: /usr/share/theharvester/theHarvester.py: Permission denied PGP (18/32) ./discover.sh: line 383: /usr/share/theharvester/theHarvester.py: Permission denied Yahoo (19/32) ./discover.sh: line 385: /usr/share/theharvester/theHarvester.py: Permission denied All (20/32) ./discover.sh: line 387: /usr/share/theharvester/theHarvester.py: Permission denied

L1ghtn1ng commented 6 years ago

You need to chmod 700 that file then try again please

From: x3nc0n notifications@github.com Sent: Thursday, October 19, 2017 12:06:57 AM To: leebaird/discover Cc: J.Townsend; Comment Subject: Re: [leebaird/discover] Errors on Passive Domain Recon and on Update (#109)

That seems to resolve the initial errors. Still seeing errors with theharvester:

./discover.sh: line 364: /usr/share/theharvester/theHarvester.py: Permission denied Bing (10/32) ./discover.sh: line 366: /usr/share/theharvester/theHarvester.py: Permission denied Dogpilesearch (11/32) ./discover.sh: line 368: /usr/share/theharvester/theHarvester.py: Permission denied Google (12/32) ./discover.sh: line 370: /usr/share/theharvester/theHarvester.py: Permission denied Google CSE (13/32) ./discover.sh: line 372: /usr/share/theharvester/theHarvester.py: Permission denied Google+ (14/32) ./discover.sh: line 374: /usr/share/theharvester/theHarvester.py: Permission denied Google Profiles (15/32) ./discover.sh: line 376: /usr/share/theharvester/theHarvester.py: Permission denied Jigsaw (16/32) ./discover.sh: line 378: /usr/share/theharvester/theHarvester.py: Permission denied LinkedIn (17/32) ./discover.sh: line 380: /usr/share/theharvester/theHarvester.py: Permission denied ./discover.sh: line 381: /usr/share/theharvester/theHarvester.py: Permission denied PGP (18/32) ./discover.sh: line 383: /usr/share/theharvester/theHarvester.py: Permission denied Yahoo (19/32) ./discover.sh: line 385: /usr/share/theharvester/theHarvester.py: Permission denied All (20/32) ./discover.sh: line 387: /usr/share/theharvester/theHarvester.py: Permission denied

— You are receiving this because you commented. Reply to this email directly, view it on GitHubhttps://github.com/leebaird/discover/issues/109#issuecomment-337753214, or mute the threadhttps://github.com/notifications/unsubscribe-auth/ADddQhQOrnWIRAdw82eKNHIHPTFPhr62ks5stoSRgaJpZM4PkVoK.

x3nc0n commented 6 years ago

All fixed up. Thanks for the assist.

L1ghtn1ng commented 6 years ago

No problem

From: xencon notifications@github.com Sent: Thursday, October 19, 2017 11:16:12 PM To: leebaird/discover Cc: J.Townsend; Comment Subject: Re: [leebaird/discover] Errors on Passive Domain Recon and on Update (#109)

All fixed up. Thanks for the assist.

— You are receiving this because you commented. Reply to this email directly, view it on GitHubhttps://github.com/leebaird/discover/issues/109#issuecomment-338053389, or mute the threadhttps://github.com/notifications/unsubscribe-auth/ADddQrOdEcLW6Xv6ljIyHGFiTKNYe3HTks5st8osgaJpZM4PkVoK.