Today, we are demonstrating tutorial on all in one Penetration Testing Suite for Information Gathering and Vulnerability Scanning suite RED HAWK.
Please check the POC Video at the end of the article.
Scans That You Can Perform Using RED HAWK
Site Title ,IP Address ,Web Server Detection ,CMS Detection, Cloudflare Detection, robots.txt Scanner,MX Lookup ‘Whois Lookup ,Geo-IP Lookup ,Grab Banners ,DNS Lookup ,Subnet Calculator ,Nmap Port Scan ,Sub-Domain Scanner ,Sub Domain ,Reverse IP Lookup and CMS Detection ,Error Based SQLi Scanner ,Bloggers View ,WordPress Scan ,Sensitive Files Crawling ,Version Detection ,Version Vulnerability Scanner , Web Crawler.
It is useful for penetration testers to understand the customer footprint on the Internet and useful for anyone who wants to know what an attacker can see about their organization.
So lets start…
- Kali Linux OS > RED HAWK
Open the Terminal and type >git clone https://github.com/Tuhinshubhra/RED_HAWK >cd RED_HAWK >php rhawk.php
Command for fix getting error for missing module cURL and DOM Module
>apt-get install php-curl >apt-get install php-xml
First step is to enter the target website and hit enter. Then specify between whether it uses http or https.
Output results are as follows –
This is all useful information for mapping out target and from there trying to find ways we can attack.