So this is the post I make before I start my podcast. What do you want to hear about? Understanding the capabilities of 7zip? Image backups VS traditional sissy backups? How to facebook? Let me know in the comments. Since I wont receive any replies at the time of writing, I’ll be keeping track of replies to this post for a while. Look forward to hearing from you normies.
At this time this is incomplete, This is my “working” notes page When they are are useful I’ll remove this line. All commands and expected results are “to the best of my understanding”, I am not an expert, and will be improving my understanding over time.
Another guide which I found useful – https://www.codemetrix.net/practical-osint-recon-ng/
Recon-NG is a tool for finding information on the web about a target company or entity. This tool, when properly configured, can do a better job than you in less time at reconnaissance. The usage guides above are likely better resources, this is a place for my personal notes.
I think before doing anything else, you should understand workspaces. They are essentially containers for your projects. These commands must be executed from the root level of recon-ng.
workspaces add (some name)
workspaces select (some name)
workspaces delete (some name) – if you delete “default” workspace, it automatically creates a new, empty default workspace.
Show modules – on its own shows all available modules, you can dive into them individually if you prefer by appending the group you’d like to see.
show modules discovery
show modules exploitation, or import, or recon.
API’s and Not API’s
If you really want to take advantage of recon-ng, you will most likely want to go beyond the basic non API functionalities. See below for pricing and signup pages.
Full list… (copied and pasted from application)
(bold means it requires an API, will link below)
(Italics means it does not require and API key)
(No formatting means I haven’t checked yet).
Getting access to API’s (in the order listed above)
| bing_api <a href="https://azure.microsoft.com/en-us/try/cognitive-services/?api=bing-web-search-api">Free trial (90 d)</a>, <a href="https://azure.microsoft.com/en-us/pricing/details/cognitive-services/search-api/web/">Pricing</a>
| builtwith_api <a href="https://builtwith.com/plans">Free (1 req/second)</a>, <a href="https://builtwith.com/plans">Pricing</a>
| censysio_id <a href="https://censys.io/api">Rate Limited free</a>
| censysio_secret Is this different than above?
| flickr_api <a href="https://www.flickr.com/services/api/misc.api_keys.html">Free for personal</a>, See details on page for commercial
| fullcontact_api <a href="https://www.fullcontact.com/developer/person-api/">Appears free</a>
| github_api <a href="https://developer.github.com/v3/">Appears free</a>
| google_api <a href="https://developers.google.com/apis-explorer/#p/">Appears free</a>
| google_cse <a href="https://developers.google.com/custom-search/json-api/v1/overview">Appears Free</a>
| hashes_api <a href="https://hashes.org/api_howto.php">Please donate</a>
| instagram_api <a href="https://www.instagram.com/developer/authentication/">free for personal</a> business?
| instagram_secret Different from above?
| ipinfodb_api <a href="http://ipinfodb.com/ip_location_api.php">free</a>
| jigsaw_api <a href="https://www.jigsaw.com/">Free or starts at $250/yr</a>, not sure.
| linkedin_api <a href="https://www.linkedin.com/developer/apps/new?csrfToken=ajax%3A4919575443807694205">Appears free</a>
| pwnedlist_api Site is down at the time of writing
| pwnedlist_ivSite is down at the time of writing
| pwnedlist_secret Site is down at the time of writing
| shodan_api <a href="https://developer.shodan.io/api/requirements">Free, may have limitations</a> <a href="https://developer.shodan.io/pricing">Pricing</a>
| twitter_api <a href="https://developer.twitter.com/en/docs">free</a>
| twitter_secret Different from above?
Freeze your credit, complain about not being able to get a loan… You probably did it wrong anyway, you missed the other two. Its not even the real issue.
You can’t sue equifax, no one really can. Also not the issue. They potentially destroyed your life, your good credit, your home mortgage, (the second and third mortgage someone else took out, some jerk might buys a gun in your name and kills someone. Someone else might rent a car and smash it).
Still, you are missing the point.
The real issue? Zero liability for anyone in the future. When you medical records get jacked? When you ridentity gets stolen? When your CAR gets stolen, When your car gets stolen by someone over the internet? how can you prove damages? Those credentials were already lost by someone else. No one has to accept responsibility anymore.
Lets get it straight, Target lost your data if you shop there, OPM lost your data if you work for the Government. Equifax lost your data if you are a US citizen. Your data is worth money, and others gave it away in a game. The game is familiar, its called I win, you played it with people you didn’t like and they generally lost, if they won, it was because you changed the rules to allow it.
What did they gain? That is a better question. I think they shorted the market in a scam of their own making, deceived by someone clever who wants to watch the world burn. With all the occupiers, the neonazis, the BLM’s, SJW’s in general, and people like the FBI conning criminals into horrible things with get out of jail free cards, did you really think this wasn’t coming? Al Quaida was entirely trained and funded by the US (CIA). It’s not a conspiracy theory. What did you gain when you played? A sense of power? Money?
No. You got nothing. Same as the people playing against you, they were scammed. They are screwed, but maybe less than they would have been if equifax had patched the software it had with an old, known vulnerability.
Whats next? Yahoo is already toast and without value. Only noobs attack yahoo, even though they have a lot of your personal information, no one cares about them anymore.
gMail? A good candidate. Better? The IRS is probably next, that would be complete domination of us citizens, and prove everyone right in what they want to believe (even though its silly)… The idea that the IRS is bad. The IRS isn’t bad, but they are the most probable next target.
Other targets are likely to be backbone service providers. Comcast, Google, and the Bells are in the southeast. Once they get pwned power and water become trivial. Power and water are the alternative to personal information, personal information is probably a distraction anyway, north korea is probably a distraction.
Equifax seems too convenient. So back to the point. Equifax tech was taken over not because they did poor security. Its the other way around, they did poor security so they had an excuse to get hacked. Its much more profitable that way, for everyone. Look at the C levels, inside trading nonsense. they made more money then you will legitimately earn in your life over something that looks pretty darn suspicious.
The next issue, when one of experian or transunion gets hacked and loses your data, who can you sue? Only those who you can prove created damages. When best buy gets hacked? Uh, your identity already got jacked, not liable. Who’s liable? No one who has enough money. Welcome to the suck friends.
This was written quickly and late at night, I hope to fix grammar, but my frustration is at least documented and available.