profile
viewpoint

Greenwolf/social_mapper 2711

A Social Media Enumeration & Correlation Tool by Jacob Wilkin(Greenwolf)

Greenwolf/Spray 333

A Password Spraying tool for Active Directory Credentials by Jacob Wilkin(Greenwolf)

Greenwolf/social_attacker 86

An Open Source Multi Site Automated Social Media Phishing Framework

Greenwolf/eslint-security-scanner-configs 26

eslintrc.js config files for running static analysis on JavaScript to identify security issues.

Greenwolf/postgres_cmd_execution_nine_three 12

A Metasploit module which allows authenticated database users to perform command execution of PostgreSQL 9.3 > Latest Version

Greenwolf/Elephone-Bruteforce 3

Project to turn a Teensy USB into a Elephone P9000 pin bruteforcer

Greenwolf/AttackSurfaceMapper 1

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

Greenwolf/dns-hijack-reporter 1

DNS Hijack Reporter is a lightweight tool to provides you email notifications if your DNS is Hijacked

Greenwolf/Responder 1

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

Greenwolf/assetnote 0

Push notifications for passive DNS data

issue commentGreenwolf/social_mapper

Cannot load main LinkedIn POST page

Is anyone else having this problem? What OS/Python version are you running?

Kapalov

comment created time in a day

issue closedGreenwolf/social_mapper

Can't Run the program

When I run the program I get the following error:

`[-] Error Filling out Facebook Profiles [-] cmd=['Xvfb', '-help'] OSError=[Errno 2] No such file or directory: 'Xvfb': 'Xvfb' Program install error! [-] Traceback (most recent call last): File "/usr/local/lib/python3.7/dist-packages/easyprocess/init.py", line 227, in start env=self.env, File "/usr/lib/python3.7/subprocess.py", line 800, in init restore_signals, start_new_session) File "/usr/lib/python3.7/subprocess.py", line 1551, in _execute_child raise child_exception_type(errno_num, err_msg, err_filename) FileNotFoundError: [Errno 2] No such file or directory: 'Xvfb': 'Xvfb'

During handling of the above exception, another exception occurred:

Traceback (most recent call last): File "/usr/local/lib/python3.7/dist-packages/easyprocess/init.py", line 180, in check_installed self.call() File "/usr/local/lib/python3.7/dist-packages/easyprocess/init.py", line 196, in call self.start().wait(timeout=timeout) File "/usr/local/lib/python3.7/dist-packages/easyprocess/init.py", line 232, in start raise EasyProcessError(self, 'start error') easyprocess.EasyProcessError: start error <EasyProcess cmd_param=['Xvfb', '-help'] cmd=['Xvfb', '-help'] oserror=[Errno 2] No such file or directory: 'Xvfb': 'Xvfb' return_code=None stdout="None" stderr="None" timeout_happened=False>

During handling of the above exception, another exception occurred:

Traceback (most recent call last): File "social_mapper.py", line 1046, in <module> peoplelist = fill_twitter(peoplelist) File "social_mapper.py", line 214, in fill_twitter TwitterfinderObject = twitterfinder.Twitterfinder(showbrowser) File "/root/social_mapper/modules/twitterfinder.py", line 16, in init display = Display(visible=0, size=(1600, 1024)) File "/usr/local/lib/python3.7/dist-packages/pyvirtualdisplay/display.py", line 34, in init self._obj = self.display_class( File "/usr/local/lib/python3.7/dist-packages/pyvirtualdisplay/display.py", line 53, in display_class cls.check_installed() File "/usr/local/lib/python3.7/dist-packages/pyvirtualdisplay/xvfb.py", line 40, in check_installed ubuntu_package=PACKAGE).check_installed() File "/usr/local/lib/python3.7/dist-packages/easyprocess/init.py", line 182, in check_installed raise EasyProcessCheckInstalledError(self) easyprocess.EasyProcessCheckInstalledError: cmd=['Xvfb', '-help'] OSError=[Errno 2] No such file or directory: 'Xvfb': 'Xvfb' Program install error!`

Any help would be amazing!

closed time in a day

OSINT007

issue commentGreenwolf/social_mapper

Can't Run the program

I assume this is fixed, thank you @Inf3r

OSINT007

comment created time in a day

issue commentGreenwolf/social_mapper

Instagram Login Page error

Is this still a problem? No one else has flagged instagram as not working?

peha2407

comment created time in a day

issue commentGreenwolf/social_mapper

Facebook Login Page loaded successfully [+] [-] Facebook Login Failed [-]

@jisjose98, @Inf3r means this: For Facebook, make sure the language of the account which you have provided credentials for is set to 'English (US)' for the duration of the run. Additionally make sure all of your accounts are working, and can be logged into without requiring 2 factor authentication.

jisjose98

comment created time in a day

startediamadamdev/bypass-paywalls-firefox

started time in 2 days

startedparsiya/eslinter

started time in 6 days

startedtanprathan/MobileApp-Pentest-Cheatsheet

started time in 13 days

startedsethsec/celerystalk

started time in 19 days

issue commentsamyk/poisontap

Defense against PoisonTap

### Securing Against PoisonTap

Server-Side Security

If you are running a web server, securing against PoisonTap is simple:

  • Use HTTPS exclusively, at the very least for authentication and authenticated content
  • Honestly, you should use HTTPS exclusively and always redirect HTTP content to HTTPS, preventing a user being tricked into providing credentials or other PII over HTTP
  • Ensure Secure flag is enabled on cookies, preventing HTTPS cookies from leaking over HTTP
  • When loading remote Javascript resources, use the Subresource Integrity script tag attribute
  • Use HSTS to prevent HTTPS downgrade attacks

Desktop Security

  • Adding cement to your USB and Thunderbolt ports can be effective
  • Closing your browser every time you walk away from your machine can work, but is entirely impractical
  • Disabling USB/Thunderbolt ports is also effective, though also impractical
  • Locking your computer has no effect as the network and USB stacks operate while the machine is locked, however, going into an encrypted sleep mode where a key is required to decrypt memory (e.g., FileVault2 + deep sleep) solves most of the issues as your browser will no longer make requests, even if woken up

Reference: https://samy.pl/poisontap/

Lvl4Sword

comment created time in 19 days

startedenaqx/awesome-pentest

started time in 19 days

startedYt1g3r/CVE-2020-0688_EXP

started time in a month

PR closed Greenwolf/social_mapper

Remove old comments, and format all code

The code is full of commented, un-used code. This PR removes it, and formats all python files

+1147 -1217

1 comment

8 changed files

Ewpratten

pr closed time in a month

pull request commentGreenwolf/social_mapper

Remove old comments, and format all code

Some of the old code is useful for when they change a login field or button, i leave the old way of finding it there to make it easier to fix next time. I think I want to leave it for now, thank you though.

Ewpratten

comment created time in a month

pull request commentGreenwolf/social_mapper

Added Pinterest to Social_Mapper

I've also added your name to the contributors in the readme, thanks again!

janmei

comment created time in a month

pull request commentGreenwolf/social_mapper

Update the Twitter login

Thanks Ohaldlb, appreciate you taking the time and making the PR. I merged in the other one.

ohadlb

comment created time in a month

push eventGreenwolf/social_mapper

Jacob

commit sha 45f2ebf2f6d45d0215d01372fd30c4f9c3fd1122

Update README.md

view details

push time in a month

push eventGreenwolf/social_mapper

Jan Meininghaus

commit sha 14d6f0ac58d0def2163f404bd65db3bca67b136b

added Pinterestfinder.py and logic to social_mapper.py

view details

Jan Meininghaus

commit sha 697ad6039185182ad6ad67b2b578cc90ceb1b8b8

Updated twitterfinder.py

view details

Jan Meininghaus

commit sha 94d2bdb6268064dd5a481379e57604ebc3c66caa

updated Readme

view details

Jacob

commit sha 4a05086a2e2df77c17d3e8890987e2363ab3a5b9

Merge pull request #152 from janmei/master Added Pinterest to Social_Mapper

view details

push time in a month

PR merged Greenwolf/social_mapper

Added Pinterest to Social_Mapper

Hey there,

for a project of mine we used Social Mapper and its been a blessing. It served us so well, that we decided to add Pinterest to the Game and would love to share it with the Community as it woks pretty well.

The Title and the input fields are as the other platforms prone to changes in the naming. But it should work as well.

Hope you can merge it if it works.

Cheers!

P.S.: Also fixed the Twitterfinder a bit. As they refreshed the login page. It didn't worked quite as well as before.

+284 -32

1 comment

4 changed files

janmei

pr closed time in a month

pull request commentGreenwolf/social_mapper

Added Pinterest to Social_Mapper

Hi @janmei, Thank you so much for this, it looks amazing and i can't wait to merge it in.

However I'm actually away at the moment, but I promise i'll take a look at it in a week or so. I just want to test it first.

janmei

comment created time in 2 months

issue commentFSecureLABS/drozer

Drozer does not find modules on windows 10 when installed from MSI

Still an issue, I also had to revert to 2.3.4.

meetinthemiddle-be

comment created time in 2 months

startedtjunxiang92/Android-Vulnerabilities

started time in 2 months

issue commentGreenwolf/social_mapper

Cannot load main LinkedIn POST page

Are you actually running it on -i "SpiderLabs" instead of a real company? SpiderLabs isnt a linkedin company, its just an example, so its probably returning nothing?

Kapalov

comment created time in 2 months

issue commentGreenwolf/social_mapper

Cannot load main LinkedIn POST page

Do you still have this issue with the most recent code? I added a suggestion to decode utf-8.

Kapalov

comment created time in 2 months

issue closedGreenwolf/social_mapper

Not as claimed

I have run social mapper in kali Linux. To my surprise it doesn't deliver the expected result.

  1. facebook login has limitation
  2. if i renamed billgate.jpg as renew.jpg it does not fetch any result. it claims to be a face recognition application rather we found this to be more profile name related search

closed time in 2 months

2helpinghand7

issue commentGreenwolf/social_mapper

Not as claimed

@rafe-ai is correct, closing this

2helpinghand7

comment created time in 2 months

issue closedGreenwolf/social_mapper

Trouble installing

It seems every time i try and run the command "python -m pip install --no-cache-dir -r requirements.txt" it get's stuck on "Running setup.py install for dlib ... -" and will just eventually give me a whole lot of errors in red text. I have already installed all of the requirements to my knowledge. I'm running a kali linux machine that is up to date. Any help would be greatly apreciated. Thanks.

closed time in 2 months

clayton19979

issue closedGreenwolf/social_mapper

"Could not authenticate to LinkedIn"

Even when not selecting LinkedIn (-li) I get the following error:

➜  python3 social_mapper.py -f company -i "SpiderLabs" -m fast -fb
[!] Could not authenticate to LinkedIn. cannot use a string pattern on a bytes-like object

The full dump is:

Traceback (most recent call last):
  File "social_mapper.py", line 886, in <module>
    cookies = authenticate() # perform authentication
  File "social_mapper.py", line 734, in authenticate
    a = login()
  File "social_mapper.py", line 710, in login
    parse = BeautifulSoup(page, "html.parser")
  File "/usr/local/lib/python3.7/site-packages/bs4/__init__.py", line 310, in __init__
    markup, from_encoding, exclude_encodings=exclude_encodings)):
  File "/usr/local/lib/python3.7/site-packages/bs4/builder/_htmlparser.py", line 248, in prepare_markup
    exclude_encodings=exclude_encodings)
  File "/usr/local/lib/python3.7/site-packages/bs4/dammit.py", line 395, in __init__
    for encoding in self.detector.encodings:
  File "/usr/local/lib/python3.7/site-packages/bs4/dammit.py", line 278, in encodings
    self.markup, self.is_html)
  File "/usr/local/lib/python3.7/site-packages/bs4/dammit.py", line 343, in find_declared_encoding
    declared_encoding_match = xml_re.search(markup, endpos=xml_endpos)
TypeError: cannot use a string pattern on a bytes-like object

Seems to originate from the login() function, specifically the line parsing the LinkedIn page via BeautifulSoup:

parse = BeautifulSoup(page, "html.parser") (https://github.com/Greenwolf/social_mapper/blob/master/social_mapper.py#L708)

I've got the latest version of BS installed:

 pip3 list | grep -i beaut 
beautifulsoup4          4.8.1     

I haven't dug much deeper, but seems odd to try authenticate to LinkedIn (i) when I'm not selecting it, and (ii) I removed the LinkedIn creds from the social_mapper.py file.

Any help greatly appreciated.

closed time in 2 months

glennzw

issue commentGreenwolf/social_mapper

"Could not authenticate to LinkedIn"

Edited social_mapper.py to fix this, thanks

glennzw

comment created time in 2 months

push eventGreenwolf/social_mapper

Jacob

commit sha 712eebd75432235f2eb8763dc49c258a22a12909

Update social_mapper.py

view details

push time in 2 months

issue closedGreenwolf/social_mapper

Error Filling out Facebook Profiles [-]

Error Filling out Facebook Profiles [-] start error <EasyProcess cmd_param=['Xvfb', '-help'] cmd=['Xvfb', '-help'] oserror=[Errno 2] No such file or directory: 'Xvfb': 'Xvfb' return_code=None stdout="None" stderr="None" timeout_happened=False>

closed time in 2 months

Rootlente

issue commentGreenwolf/social_mapper

Error Filling out Facebook Profiles [-]

On Macbook use XQuartz Shell, on Linux install xvfb.

Rootlente

comment created time in 2 months

startedGhostPack/Rubeus

started time in 2 months

issue openedSecureAuthCorp/impacket

smbclient.py no support for raw commands or mass download

Configuration

impacket version: Impacket v0.9.21-dev Python version: 2.7.16+ Target OS: Windows 7

Debug Output With Command String

Recursive download with smbclient: https://superuser.com/questions/856617/how-do-i-recursively-download-a-directory-using-smbclient

mask ""
recurse ON
prompt OFF
cd 'path\to\remote\dir'
lcd '~/path/to/download/to/'
mget *

Commands are not accepted.

Additional context

In smbclient.py, there seems to be no obvious option to recursively download files, making it problematic to use on large numbers of files on large shares. There also appears to be no reference to it in the documentation.

Does this option exist and is undocumented? Or has it not been implemented? The raw commands which should allow this in smbclient are listed above. I was recently on a test where both smbclient and pth-smbclient were failing, while smbclient.py was working, but it was difficult to download the data needed due to only being able to 'get' on single files, * wildcard was tried but found not to work.

created time in 2 months

startedfunkandwagnalls/ranger

started time in 2 months

startedsecurestate/syringe

started time in 2 months

issue commentGreenwolf/social_mapper

Error Filling out Facebook Profiles [-]

@Rootlente are you using OSX?

Rootlente

comment created time in 3 months

issue commentGreenwolf/social_mapper

Trouble installing

@clayton19979 are you using a fresh kali box with nothing else installed on it? Sometimes other tools break the install process

clayton19979

comment created time in 3 months

issue closedGreenwolf/social_mapper

Can't seem to log into FB

Hello,

I followed all instructions. I put firefox and geckodriver on /usr/bin. I didn't have any issues running the installation. When I get to the part where I need to provide my credentials nothing shows up.

As instructed I run the command:

python3 social_mapper.py

the following shows up:

root:~/social_mapper# python3 social_mapper.py usage: social_mapper.py -f <format> -i <input> -m <mode> -t <threshold> <options> social_mapper.py: error: the following arguments are required: -f/--format, -i/--input, -m/--mode

Anyone could help me with this?

closed time in 3 months

OSINT007

issue commentGreenwolf/social_mapper

Can't seem to log into FB

@OSINT007 looks like you arn't providing the correct command line parameters.

To enter your credentials you open the social_mapper.py file and put your username and passwords in the variables at the top of the file.

OSINT007

comment created time in 3 months

issue closedGreenwolf/social_mapper

No module name facebook

When running main script a error ocuured in rashpberry pi4 4GB Kali Linux no module name 'facebook' found

closed time in 3 months

rahul7774

issue commentGreenwolf/social_mapper

No module name facebook

Thanks @Banthex, this should have solved the issue.

rahul7774

comment created time in 3 months

issue closedGreenwolf/social_mapper

received following error

root@kali:~/social_mapper# python3 social_mapper.py -f imagefolder -i /root/social_mapper/Input-Examples/imagefolder -m fast -fb [-] Error Filling out Facebook Profiles [-] cmd=['Xvfb', '-help'] OSError=[Errno 2] No such file or directory: 'Xvfb': 'Xvfb' Program install error!

closed time in 3 months

technicaldada

issue commentGreenwolf/social_mapper

received following error

Thank you @rootm0s. This should have addressed the issue.

technicaldada

comment created time in 3 months

startedspeed47/spectre-meltdown-checker

started time in 4 months

startedbitsadmin/wesng

started time in 4 months

issue commentGreenwolf/social_mapper

Error Filling out Facebook Profiles

On OSX you can install xquartz (x11), it's an app and you can right click it in your dock to launch shell, try running social mapper from there

jjfneto

comment created time in 5 months

issue closedGreenwolf/social_mapper

Error logging in.

Yes I have validated all of my credentials within social mapper.py and yet I still get the following error when I try to run it. I am using Kali 2019 rolling completely updated.

root@SCSKali:~/social_mapper# python3 social_mapper.py -f company -i "Evil Corp LLC" -m fast -fb Error logging in! Try changing language on social networks or verifying login data. If a capcha is required to login (due to excessive attempts) it will keep failing, try using a VPN or running with the -s flag to show the browser, where you can manually solve the capcha.

I only have creds for twitter, ig, fb, and linkedin. I have used each one by itself and still get the same error. On OSX Catalina i keep getting can't login to LinkedIn and it stops, whether it is included or not.

closed time in 5 months

SchellerCyberSecurity

issue commentGreenwolf/social_mapper

Error logging in.

If -s isn't working its a problem with your selenium install. Try using a selenium test script to verify if its installed correctly.

SchellerCyberSecurity

comment created time in 5 months

issue commentGreenwolf/social_mapper

Error logging in.

-i, --input : The company name, a CSV file, imagefolder or Social Mapper HTML file to feed into Social Mapper

SchellerCyberSecurity

comment created time in 5 months

issue commentGreenwolf/social_mapper

Error logging in.

Also I don't think it will work how you want it to on this, as you don't have any connection degrees to the company. Perhaps you should check out some of the other modes though?

SchellerCyberSecurity

comment created time in 5 months

issue commentGreenwolf/social_mapper

Error logging in.

Hey @SchellerCyberSecurity, try using the '-s' option to show the browser, that way you can solve the login captacha in the browser

SchellerCyberSecurity

comment created time in 5 months

issue commentGreenwolf/social_mapper

Error Filling out Facebook Profiles

That's strange, can you give the full input and output please?

Palmus84

comment created time in 5 months

issue commentGreenwolf/social_mapper

Error Filling out Facebook Profiles

and you still get the same error?

Palmus84

comment created time in 5 months

issue closedGreenwolf/social_mapper

Error Filling out Facebook Profiles

[-] Error Filling out Facebook Profiles [-] Message: timeouts

[-] Please provide Twitter Login Credentials in the social_mapper.py file Please provide Instagram Login Credentials in the social_mapper.py file Please provide LinkedIn Login Credentials in the social_mapper.py file Please provide VK (VKontakte) Login Credentials in the social_mapper.py file Please provide Weibo Login Credentials in the social_mapper.py file Please provide Douban Login Credentials in the social_mapper.py file

Results file: SM-Results/results-social-mapper.csv HTML file: SM-Results/results-social-mapper.html

Task Duration: 0:00:07.547839

closed time in 5 months

Palmus84

issue commentGreenwolf/social_mapper

Error Filling out Facebook Profiles

Looks like you haven't added your credentials to the social_mapper.py file 😄

Palmus84

comment created time in 5 months

issue commentGreenwolf/social_mapper

Facebook session has expired attempting to reestablish...

Hi @FahadAkash, you need a faster internet connection i believe. You could try hosting in the cloud if your connection is spotty.

jdgualteros

comment created time in 5 months

startedoffensive-security/exploitdb-bin-sploits

started time in 5 months

startedTH3xACE/SUDO_KILLER

started time in 5 months

startedswisskyrepo/PayloadsAllTheThings

started time in 5 months

startedmassyn/centos-cis-benchmark

started time in 5 months

starteddocker/docker-bench-security

started time in 5 months

issue openedPowerShell/Win32-OpenSSH

Key created with WSL Linux 'Invalid Format'

"OpenSSH for Windows" version

PS C:\Windows\system32> ssh -V
OpenSSH_for_Windows_8.0p1, LibreSSL 2.6.5

Server OperatingSystem Linux myhost.mydomain.com 4.19.0-kali4-amd64 #1 SMP Debian 4.19.28-2kali1 (2019-03-18) x86_64 GNU/Linux

Client OperatingSystem Microsoft Windows [Version 10.0.18362.418]

What is failing After creating a SSH key on WSL Kali Linux, I move the keys to C:\Users\me.ssh

PS C:\Users\me\.ssh> dir


    Directory: C:\Users\me\.ssh


Mode                LastWriteTime         Length Name
----                -------------         ------ ----
-a----       21/10/2019     21:33           2654 id_rsa
-a----       21/10/2019     19:54            578 id_rsa.pub
-a----       21/10/2019     20:34            551 known_hosts

When connecting to the server, it never prompts me for my passphrase, and the output seems to show that the id_rsa key is in an invalid format.

It should be noted i have tried this with id_rsa and id_rsa.pub both converted to Linux EoL mode and Windows EoL mode with Notepad++, as suggested in this issue (https://github.com/PowerShell/Win32-OpenSSH/issues/1315). However both have the same output.

Expected output

The expected output should prompt the user for the passphrase, this line:

Enter passphrase for key '/home/me/.ssh/id_rsa':

Full output:

me:~$ ssh root@myhost.mydomain.com -v
OpenSSH_8.0p1 Debian-7, OpenSSL 1.1.1c  28 May 2019
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to myhost.mydomain.com [2402:6540:110::1006] port 22.
debug1: Connection established.
debug1: identity file /home/me/.ssh/id_rsa type 0
debug1: identity file /home/me/.ssh/id_rsa-cert type -1
debug1: identity file /home/me/.ssh/id_dsa type -1
debug1: identity file /home/me/.ssh/id_dsa-cert type -1
debug1: identity file /home/me/.ssh/id_ecdsa type -1
debug1: identity file /home/me/.ssh/id_ecdsa-cert type -1
debug1: identity file /home/me/.ssh/id_ed25519 type -1
debug1: identity file /home/me/.ssh/id_ed25519-cert type -1
debug1: identity file /home/me/.ssh/id_xmss type -1
debug1: identity file /home/me/.ssh/id_xmss-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_8.0p1 Debian-7
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.9p1 Debian-10
debug1: match: OpenSSH_7.9p1 Debian-10 pat OpenSSH* compat 0x04000000
debug1: Authenticating to myhost.mydomain.com:22 as 'root'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:jxxxYGexxx0GYxhBEUQ4vExxxP+WlhrxxxgdkHhtLk
debug1: Host 'myhost.mydomain.com' is known and matches the ECDSA host key.
debug1: Found key in /home/me/.ssh/known_hosts:1
debug1: rekey out after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey in after 134217728 blocks
debug1: Will attempt key: /home/me/.ssh/id_rsa RSA SHA256:gUpmLxxx/q7dvl/C8mExxx0jCGz6xxxwUpxxxiTPk
debug1: Will attempt key: /home/me/.ssh/id_dsa
debug1: Will attempt key: /home/me/.ssh/id_ecdsa
debug1: Will attempt key: /home/me/.ssh/id_ed25519
debug1: Will attempt key: /home/me/.ssh/id_xmss
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<ssh-ed25519,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey
debug1: Next authentication method: publickey
debug1: Offering public key: /home/me/.ssh/id_rsa RSA SHA256:gUpxxxH5J/q7xxx/C8mxxxk0jCGzxxx/xxxgxxxiTPk
debug1: Server accepts key: /home/me/.ssh/id_rsa RSA SHA256:gUpxxxH5J/q7xxx/C8mE9qk0xxxz6sX/xxxxxx0iTPk
Enter passphrase for key '/home/me/.ssh/id_rsa':
debug1: Authentication succeeded (publickey).
Authenticated to myhost.mydomain.com ([2xxx:6xxx:110::1xxx]:22).
debug1: channel 0: new [client-session]
debug1: Requesting no-more-sessions@openssh.com
debug1: Entering interactive session.
debug1: pledge: network
debug1: client_input_global_request: rtype hostkeys-00@openssh.com want_reply 0
debug1: Remote: /root/.ssh/authorized_keys:19: key options: agent-forwarding port-forwarding pty user-rc x11-forwarding
debug1: Remote: /root/.ssh/authorized_keys:19: key options: agent-forwarding port-forwarding pty user-rc x11-forwarding
setsockopt IPV6_TCLASS 16: Operation not permitted:
debug1: Sending environment.
debug1: Sending env LANG = en_US.UTF-8
Linux myhost.mydomain.com 4.19.0-kali4-amd64 #1 SMP Debian 4.19.28-2kali1 (2019-03-18) x86_64

The programs included with the Kali GNU/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in /usr/share/doc/*/copyright.

Kali GNU/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
Last login: Mon Oct 21 18:15:59 2019 from 2xxx:6xxx:exxx:70::1xxx

Actual output

Output on windows showing it failing to load the id_rsa key due to an invalid format, but one that works on linux/WSL.

Load key "C:\\Users\\me/.ssh/id_rsa": invalid format

Full Output:

PS C:\Users\me\.ssh> & 'C:\Program Files\OpenSSH-Win64\ssh.exe' root@myhost.mydomain.com -v
OpenSSH_for_Windows_8.0p1, LibreSSL 2.6.5
debug1: Connecting to myhost.mydomain.com [2402:6540:110::1006] port 22.
debug1: Connection established.
debug1: identity file C:\\Users\\me/.ssh/id_rsa type 0
debug1: identity file C:\\Users\\me/.ssh/id_rsa-cert type -1
debug1: identity file C:\\Users\\me/.ssh/id_dsa type -1
debug1: identity file C:\\Users\\me/.ssh/id_dsa-cert type -1
debug1: identity file C:\\Users\\me/.ssh/id_ecdsa type -1
debug1: identity file C:\\Users\\me/.ssh/id_ecdsa-cert type -1
debug1: identity file C:\\Users\\me/.ssh/id_ed25519 type -1
debug1: identity file C:\\Users\\me/.ssh/id_ed25519-cert type -1
debug1: identity file C:\\Users\\me/.ssh/id_xmss type -1
debug1: identity file C:\\Users\\me/.ssh/id_xmss-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_for_Windows_8.0
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.9p1 Debian-10
debug1: match: OpenSSH_7.9p1 Debian-10 pat OpenSSH* compat 0x04000000
debug1: Authenticating to myhost.mydomain.com:22 as 'root'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:jxxxGeJexxxxhBEUQ4xxxZP+WlhrxxxHhtxxx
debug1: Host 'myhost.mydomain.com' is known and matches the ECDSA host key.
debug1: Found key in C:\\Users\\me/.ssh/known_hosts:3
debug1: rekey out after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey in after 134217728 blocks
debug1: pubkey_prepare: ssh_get_authentication_socket: No such file or directory
debug1: Will attempt key: C:\\Users\\me/.ssh/id_rsa RSA SHA256:gxxxLcH5xxxdvl/C8mxxxk0jCxxxwUpgSi0xxx
debug1: Will attempt key: C:\\Users\\me/.ssh/id_dsa
debug1: Will attempt key: C:\\Users\\me/.ssh/id_ecdsa
debug1: Will attempt key: C:\\Users\\me/.ssh/id_ed25519
debug1: Will attempt key: C:\\Users\\me/.ssh/id_xmss
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<ssh-ed25519,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey
debug1: Next authentication method: publickey
debug1: Offering public key: C:\\Users\\me/.ssh/id_rsa RSA SHA256:gxxxLcHxxxq7dxxx8mE9qkxxx6sX/wxxxi0iTPk
debug1: Server accepts key: C:\\Users\\me/.ssh/id_rsa RSA SHA256:gUpmLcxxxq7dvl/C8xxxqk0xxxz6sX/wUxxxi0iTPk
Load key "C:\\Users\\me/.ssh/id_rsa": invalid format
debug1: Trying private key: C:\\Users\\me/.ssh/id_dsa
debug1: Trying private key: C:\\Users\\me/.ssh/id_ecdsa
debug1: Trying private key: C:\\Users\\me/.ssh/id_ed25519
debug1: Trying private key: C:\\Users\\me/.ssh/id_xmss
debug1: No more authentication methods to try.
root@myhost.mydomain.com: Permission denied (publickey).

created time in 5 months

startedmicrosoft/WSL

started time in 5 months

issue openedmicrosoft/WSL

WSL Doesn't prioritise OpenVPN DNS servers over local WiFi in resolv.conf

  • Your Windows build number: Microsoft Windows [Version 10.0.18362.418]

  • What you're doing and what's happening: On a home WiFi Using OpenVPN-GUI to connect to a VPN Server, then trying to resolve a full hostname to SSH into. I believe this isn't intended behaviour as programs such as Microsoft Edge are prioritising the OpenVPN DNS servers.

Relevant parts of 'ipconfig /all' output, showing network setup: ''' PS C:\Users\me> ipconfig /all

[...SNIP...]

Ethernet adapter Ethernet 6:

Connection-specific DNS Suffix . : mydomain.com Description . . . . . . . . . . . : TAP-Windows Adapter V9 Physical Address. . . . . . . . . : 00-XX-BD-XX-91-XX DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IPv6 Address. . . . . . . . . . . : 2xx2:6xx0:exx3:70::1xxf(Preferred) Link-local IPv6 Address . . . . . : fxx0::bxx0:exxa:8xx:2xx4%53(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.70.17(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Lease Obtained. . . . . . . . . . : 21 October 2019 22:06:43 Lease Expires . . . . . . . . . . : 20 October 2020 22:06:44 Default Gateway . . . . . . . . . : DHCP Server . . . . . . . . . . . : 192.168.70.254 DHCPv6 IAID . . . . . . . . . . . : 889257917 DHCPv6 Client DUID. . . . . . . . : 00-xx-00-01-25-xx-2D-xx-90-20-xx-19-C5-52 DNS Servers . . . . . . . . . . . : 2xx2:6xx0:exx3:9::44 2xx2:6xx0:exx3:9::43 172.16.9.44 172.16.9.43 NetBIOS over Tcpip. . . . . . . . : Enabled

[...SNIP...]

Wireless LAN adapter WiFi:

Connection-specific DNS Suffix . : myhub.home Description . . . . . . . . . . . : Intel(R) Wireless-AC 9560 160MHz Physical Address. . . . . . . . . : 5C-87-9C-21-70-0F DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes Link-local IPv6 Address . . . . . : fe80::2c79:8a0c:eba1:cd2f%22(Preferred) IPv4 Address. . . . . . . . . . . : 192.168.0.18(Preferred) Subnet Mask . . . . . . . . . . . : 255.255.255.0 Lease Obtained. . . . . . . . . . : 21 October 2019 19:33:55 Lease Expires . . . . . . . . . . : 28 October 2019 21:55:15 Default Gateway . . . . . . . . . : 192.168.0.1 DHCP Server . . . . . . . . . . . : 192.168.0.1 DHCPv6 IAID . . . . . . . . . . . : 190613404 DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-25-30-2D-5B-90-20-3A-19-C5-52 DNS Servers . . . . . . . . . . . : 192.168.0.1 NetBIOS over Tcpip. . . . . . . . : Enabled '''

The resulting resolv.conf, note how the 192.168.0.1 local WiFi DNS server address is prioritised over VPN. '''' root:~# cat /etc/resolv.conf

This file was automatically generated by WSL. To stop automatic generation of this file, remove this line.

nameserver 192.168.0.1 nameserver 172.16.9.44 nameserver 172.16.9.43 search myhub.home mydomain.com '''

This causes lookups over VPN to fail. ''' root:~# host myhost.mydomain.com Host myhost.mydomain.com not found: 3(NXDOMAIN) '''

  • What's wrong / what should be happening instead: As I'm connecting over VPN, the VPN's name servers should be prioritised over the ones on the local WiFi network.

The resulting resolv.conf should look like this instead. '''' root:~# cat /etc/resolv.conf

This file was automatically generated by WSL. To stop automatic generation of this file, remove this line.

nameserver 172.16.9.44 nameserver 172.16.9.43 nameserver 192.168.0.1 search myhub.home mydomain.com '''

This solves the resolution issue: ''' root:~# host myhost.mydomain.com myhost.mydomain.com has IPv6 address 2xx1:2xx0:ef03:9::1x '''

created time in 5 months

issue closedGreenwolf/social_mapper

In the future, will this software be able to search by name without photo?

This search software searches based on name and photo. Will it be possible to search only with face photos in the future? Also, can you identify the name you need when you search? For example, if your real name is "Mark An", can you specify if you search by entering only "Mark"?

closed time in 6 months

Cvrew

issue commentGreenwolf/social_mapper

In the future, will this software be able to search by name without photo?

Hi @Cvrew, Unfortunately not, for this to work you would have to scrape the entirety of the social media sites and have a giant database to search against. That's some nation state level stuff.

The problem with using only the first name, is that there then is too many results to look through, so many that some won't be shown so it would be incredibly inaccurate.

Cvrew

comment created time in 6 months

startedfkasler/snapback

started time in 6 months

PR opened superhedgy/AttackSurfaceMapper

Proxy Support for Attack Surface Mapper

Implemented Proxy Support.

Workarounds were:

  • For HTTP proxies, SSL cert verification is disabled. This is so it can be MITM'd in Burp for debugging.
  • For localhost proxies, MITM works for everything except the Shodan module.

Might be worth splitting into proxy & debugging mode in the future. For now only use trusted proxies.

+150 -66

0 comment

10 changed files

pr created time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 129babb22aa74ccad33f60fbfb43d2ec691ecda3

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 8f74b7bb9aaa0ed591f23352d384f7063898b409

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha a3cc77e5549277cd786678a8b29f4c036b8fcad4

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 9d7fe05461333be10d55d3314198a1a277f3b28b

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha ed4c93829fb314773e817c7590fe86ed7c35af6d

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha f746bde910ef0466b86734f0550bc8ec61a4ee1b

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 765d0c23781f684fe4f12185ba90696dcb98f088

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 1b73e7a69b0ee943417ef271c5033e48cd3d5838

Update buckethunter.py

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 5bbda17086ea72e4c6204a2a127b82966304b278

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 31f663939b40f4fb94d9b39c0a7eb6a43c5c751b

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha ba5e5cb954f7aaf11a5513b973b3b46dafb30905

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 47ee559131eeeb69dad97c234c47428fe511ae13

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 981074561648218f4c5dbd1aa8fb51b319c3a5b0

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 9f44ada8f8c819520bc090e272c2c96168ae93a2

Update webscraper.py

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 3bf8027e7b1cb8374eb6eb9caa1131d3067e6728

Update linkedinner.py

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 9e6004d61b8db77f669c480017508f85681b3e7d

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha ccbead99ed47af53c790fb8f9e35a7e2095217c3

Added Proxy Support

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 3bda55b6ba9035c89727f36dd6ca513927d31dfc

Added Registration Links to ReadMe

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 9aa257a488497d9eedb89d3762cfb4cf5980b605

Update README.md

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha c93dca494358709e2981dc3f3f1afd45b8ddd9e3

Update README.md

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha 1d444dd356736aa5471655dbb33615c52c23f84b

Update README.md

view details

push time in 6 months

push eventGreenwolf/AttackSurfaceMapper

Jacob

commit sha a433f59dc6f57ba290baccb0d9daf08c02a89fd9

Update README.md

view details

push time in 6 months

fork Greenwolf/AttackSurfaceMapper

AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

fork in 6 months

startedIgnitetechnologies/HackTheBox-CTF-Writeups

started time in 6 months

push eventGreenwolf/social_mapper

Jacob

commit sha 4721f42f3cbc5822b2a16e089281d2fd69ce12a6

Update social_mapper.py

view details

push time in 6 months

push eventGreenwolf/social_mapper

Alessandro Migliardi

commit sha 8911ad97d8f1bec1893d17e765755a44dc7f795a

Added more descriptive errors Rather than "cookie debug", some possible causes and solutions are listed. Also, if the company page on linkedin has no people listed, social_mapper would crash due to IndexError. The exception is now caught and a message explaining why is has crashed is provided.

view details

Jacob

commit sha 6176bd480d6b01a466f4b8db7a243de814b2ffe7

Merge pull request #135 from alemigliardi/patch-1 Added more descriptive errors

view details

push time in 6 months

PR merged Greenwolf/social_mapper

Added more descriptive errors

Rather than "cookie debug", some possible causes and solutions are listed. Also, if the company page on linkedin has no people listed, social_mapper would crash due to IndexError. The exception is now caught and a message explaining why it has crashed is provided.

+7 -2

1 comment

1 changed file

alemigliardi

pr closed time in 6 months

pull request commentGreenwolf/social_mapper

Added more descriptive errors

Hi @alemigliardi, thank you so much for this, it looks great.

alemigliardi

comment created time in 6 months

issue commentGreenwolf/social_mapper

Output: cookie debug

Hi @pkq2019, i just tested and I don't get this issue when doing a company search on LinkedIn. Try changing your language to english if it isn't already as that could be affecting it? Otherwise I'll need more input/output

pdelteil

comment created time in 6 months

startedmwrlabs/C3

started time in 6 months

more