ProGram-Stuff

If you need to scan a large number of domains for a specific web app vulnerability, Dorkbot may be the tool for you. Dorkbot uses search engines to locate dorks and then scan potentially vulnerable apps with a scanner module. This tool is useful if you're managing a large number of hosts and aren't sure what may be vulnerable and what may not. It's also useful if you're a black hat looking to compromise as many machines as possible in a short time, not that we condone any black hattery here. Before we get started, I'd like to explain the concept of a dork a little bit further. Dorks are a way of using search engnjines to locate vulnerable web apps. If you're thinking "that's just Google hacking," you're correct. They are essentially the same thing, though Google hacking generally has fewer negative connotations. Essentially, when we use dorks, the goal is to search out a vulnerable application and either note it or attempt to exploit it

Whether you're white hat, black hat, or some shade in-between, navigating through a network is a core part of hacking. To do that, we need to be able to explore a network to discover the addresses of gateways, interfaces, and other attached devices. When  ifconfig  just isn't enough, you can steer your way around a network with a convenient tool called Ship, the script for everything IP. What Is Ship? Created by  Sotirios Roussis , Ship is a portmanteau of "shell" and "IP" and it's literally a shell script that displays network addresses. However, that description doesn't really give it justice. Ship is a very handy tool. I like to think of it as a one-stop-shop for basic network  reconnaissance  and addressing. Ship can display everything from the gateway IP address to the IP and MAC addresses of all the active devices on a network. It can do simple things like  ping and  traceroute , as well as more sophisticated things like listening in on