Information Security

Backtrack 4: Information Gathering: Searchengine: The Harvester – Email, User Names, Subdomain & Hostnames Finder

The next tool on Backtrack 4 I am going to review is The Harvester which was written by the guys over at Edge Security. The Harvester is a tool for gathering e-mail accounts, user names and hostnames/subdomains from different public sources. It’s a really simple tool, but very effective.

The supported sources are:

  • Google – emails,subdomains/hostnames
  • Bing search – emails, subdomains/hostnames
  • Pgp servers – emails, subdomains/hostnames
  • Linkedin – user names

Below I will go through a few examples of data mining some common search engines for usernames, email address’s and subdomains. The information gained in passive reconnaissance can be a invaluable resource for the penetration tester.

Technology Insights

How to Add Tab Complete to Vim Search

I recently started using the Vim editor again. It used to be my favorite because of all the great plugins. I have been getting lazy the past year and have been using nano but recently I had to work on a few systems which only had vim and I was not able to install another editor. I am am going to write a few article’s on my favorite plugins.

Tab complete is probably the best thing about linux and the shell so it only makes sense to be able to use it with vim. Adding this plugin makes it possible to tab complete while using the / to search in vim. Below I will show how to add plugins to vim.

Technology Insights

How to Disable the Caps Lock Key via the Registry in Windows

I am always annoyed by the caps lock on a laptop. I seem to hit it about 100 times a day while typing. It is especially annoying when writing code. I decided to peek into the registry and map the key from its key number to zero which effectively disables it. After disabling it via the registry I found a .reg file online which someone made to map the caps lock key to the control key. This didn’t really interest me so I modified it to map to nothing.