How to do penetration testing

How to do penetration testing of any  website

How to do penetration testing of any website 

Today’s topic is related to penetration testing. I  going to tell u how to do penetration testing of any website. We can say, you will learn how to extract the hidden emails of any website. There are some easy ways for this. The method I am going to explain today is very effective and I hope you will learn a lot through this.  If you want to start your career in white hat hacking(ethical hacking) then this post will be of great help of yours.

Infogo, the hacking tool

Infogo is a great tool for hacking. Today I am going to tell you about Infoga.

This tool is an email in reality. This is used to collect information about emails from any kind of websites.

Useful features of Infoga: 

There are two kinds of the usefulness of this too.

·         Through this tool it can be a beginning step of your penetration testing practice.  

·         You can also check If you have your website or company, internet visibility of the website or company site.

Above all, these it collects email accounts and their information. I am going to explain to you how does it work according to Kali Linux.

The working procedure through Kali

At first, let me tell you that there are two methods of installing it.

·         First Go to Github.

You can easily download this website from GitHub. I am going to explain to you the whole procedure here you just need to go through the content.

Go to GitHub where you can find the clone button at right which will let you download the tool as Zip file.

·         You can do it with “Directly Command Prompt” as well.

This tool is not for unethical hacking as mentioned in the disclaimer on the website. So you can’t use this in unethical hacking but it’s very useful for penetration testing. It needs less than Python2.7.

You can read and learn about the tool and their commands on this website as well. You can learn about the installation process from Github as well. you can install reading the commands explained properly on Github.

It will be much easier to use Infoga on Kali Linux for penetration testing or ethical hacking for those who already know Kali Linux.

Working with Kali Linux to learn penetration testing 

Now coming to Kali, you need to copy and paste the command written on Github in the installation section. Kali will show that the website is already existing. Now through the second command, we will enter into the folders. Write CD Infoga which means, it will enter through CD into the folders.

Then you need to command LS So that we can know the information about the files and folders from the list.

Now coming to requirements. You need to command pip installation -r which is an attribute of the command then write Requirement.txt. Now press Enter and it will check if the tool is working of not in your system.  This way you can see that all the requirements all fulfilled.

Penetration Testing - Test run on your website

Let’s use the tool on your system. Now command python info go.py (as this file has been written in python). Now, After Pressing Enter, you will see that all the commands and methods are there where you can see you can know about any domain(-d) means target or source(-s) You can know any website’s visibility of internet and collect emails using this. You can see all these search engines like google bing ask and yahoo. Other than this you can collect information you can use the attributes like “-i”, for verbose “-v”, and get any help use “-h”.

There are given examples as well on Github like which you can use on any particular domain.

kali Linux window

The practical practice of Penetration testing 

Now let’s learn practically how to collect email from any particular website.

Command python then writes infoga.py then input domain. You can use - - domain or -d as an attribute here. Now apply domain name. Let’s use NDTV.com to see what emails can be extracted from the site of NDTV.

Then write “- source all” which means all the search engines will be used here. You can see that it has already started to search over the internet. This result depends on the internet speed. According to the speed, you will get your desired result.

You can see it is searching through all the search engines.

vulnerability

 

Results of using Kali Linux or Infoga for Penetration Testing 

After doing all these you can see it has already extracted the emails with IP address which are available.

You need to know that this tool can not be used over government websites or some other countries like Australia. You should not these tools unethically and should only use with permission. Through this tool, you can extract emails with the IP address. You can do penetration testing  with this tool and see what features are shown in penetration testing of others so that you can hide them from penetration testing with a more powerful tool.