Commands
Whois
Recon-ng
Exif Tool
Dig
Google Dorks
NSLookup
Tools
Gitrob
Commands
Dig - Query DNS Servers
dig @[server_ip] [domain_name] [type]
dig @[server_ip] [domain_name] -t AXFR (domain xfer)
dig @[server_ip] [domain_name] -t IXFR=[N] (domain xfer (incremental) since last revision)
Additional flag- +norecursive or +recursive
Exif Tool - Metadata Extraction
exiftool [path_to_file]
- Note: To find forward slashes, just grep /. To find backslashes, grep '\\'
Google Dorks - Google search queries to find useful information using OSINT
site: - searches specific site
related: - Finds related sites
intitle: - Find text in directory listing
inurl: - Finds text in URL
filetype: - Looks for specific files
- Note: For more Google Dorks, visit the Google Hacking Database
WHOIS - Find domain registration information
whois [-h whois_server] or [domain_name]
Tools
Gitrob - Pilfers source code info from business public githubs