All in one footprinting site

[ph4nt0m]

I was thinking about making a website that contains all sorts of foot printing tools. I know there are many whois websites around, but I've yet to seen an "all in one". I want to create an online port scanner similar to nmap online, A DNS Lookup, WhoIs, Ping, traceroute ect. Maybe even a simple hash cracker or something. I think this would benefit me greatly, and also a fun project. Would any of you find something like this useful? Also let me know if there is something close to this around.

[godofcereal]

I use www.dnsstuff.com.
If you can get it up to the same standard as dnsstuff.com then I will use it.

[ph4nt0m]

I had the same Idea in mind, but I think a port scanner added in would be great. Obviously using the regular nmap command line would probably get more results, but I'll see how mine turns out. I'm still thinking of things to add to it. Regardless I want to try and make it, because I don't have a site yet.

[godofcereal]

make it first then worry about the site later.

[fiftysixer]

make it first then worry about the site later.

Make a list first, then make what's on the list, then make the site to hold it all. Or else you'll be in a never-ending un-organized pile of code. :p

[ph4nt0m]

Make a list first, then make what's on the list, then make the site to hold it all. Or else you'll be in a never-ending un-organized pile of code. :p

Haha This is true.

[fiftysixer]

well, I'll help :p

I want to create an online port scanner similar to nmap online, A DNS Lookup, WhoIs, Ping, traceroute ect. Maybe even a simple hash cracker or something. I think this would benefit me greatly, and also a fun project. Would any of you find something like this useful? Also let me know if there is something close to this around.

Time to break this down:
1) nmap online - pretty obvious, just clone Nmap Online! If you wanted to be REALLY cool you could config your nmap box to output in XML and just use some cool XSLT tricks to display it.

2) DNS Lookup, WhoIs, Ping, traceroute - There's http://www.domaintools.com/ which has all of that. It would still be cool to have another one though! Second opinions are always good, especially when dealing with networks and connectivity.

3) hash cracker - There's a lot of those - http://gdataonline.com/ andhttp://md5.rednoize.com/ are probably the best, I run a small one at http://hashdb.homelesshackers.net/, best would be something that could read from all the hash databases + connect to a cluster for actual cracking. That would be somewhat epic...

Whatever you do, good luck!

[ph4nt0m]

well, I'll help :p

I want to create an online port scanner similar to nmap online, A DNS Lookup, WhoIs, Ping, traceroute ect. Maybe even a simple hash cracker or something. I think this would benefit me greatly, and also a fun project. Would any of you find something like this useful? Also let me know if there is something close to this around.

Time to break this down:
1) nmap online - pretty obvious, just clone Nmap Online! If you wanted to be REALLY cool you could config your nmap box to output in XML and just use some cool XSLT tricks to display it.

2) DNS Lookup, WhoIs, Ping, traceroute - There's http://www.domaintools.com/ which has all of that. It would still be cool to have another one though! Second opinions are always good, especially when dealing with networks and connectivity.

3) hash cracker - There's a lot of those - http://gdataonline.com/ andhttp://md5.rednoize.com/ are probably the best, I run a small one at http://hashdb.homelesshackers.net/, best would be something that could read from all the hash databases + connect to a cluster for actual cracking. That would be somewhat epic...

Whatever you do, good luck!

Thanks man. For now I'm just going to start with a port scanner and go from there I'm not even sure where to start. I was thinking about doing it in php. I'm probably going to have to end up experimenting with a new language. Any other advice, as far as a port scanner? I'm thinking the whois should be relatively easy.

[mischief]

if you develop some tools like those at iptools.com, or checker.samair.ru, let me know! i am looking for some tools like this to put on my site

[fiftysixer]

Thanks man. For now I'm just going to start with a port scanner and go from there I'm not even sure where to start. I was thinking about doing it in php. I'm probably going to have to end up experimenting with a new language. Any other advice, as far as a port scanner? I'm thinking the whois should be relatively easy.

Port scanner...hrmmm....you *could* code the entire thing entirely in PHP, it'll be slow as anything and probably a great way to set off all kinds of IDS alerts. Not a good idea. (a billion fsockopen()'s?)

Your best bet is to have the PHP frontend where people can input their target to scan, set scan options, and the PHP generates a command line, which is then run via PHP's passthru() or something like that.

Or, there's a flag in nmap where you can output in XML, as I said before it would be pretty cool if you had it do that and used XSL Transformations to show the XML as a web page. Somewhat steep learning curve though - I'm only getting started with XSLT but it's fun. :p

Note on the nmap: You'll want to make sure that someone can't hack it if it generates a command string (filter for null bytes or other illegal chars), and if people use your system to scan certain targets, your box could suddenly become Very Interesting to people who you'd rather didn't know about it.

Whois could be rather easy, just pull it off whois.net or similar