MSNPawn has been designed and developed on the .Net framework. For those who like to refresh their skill in ethical hacking and information security, MSNPawn tool will help you search, extract information of a web application.
Tools included in MSNPawn:
MSNHostFP – Supply an IP Address or IP Address range to fetch all possible virtual hosts or application running on each IP addresses.
MSNDomainFP – Supply a domain name to fetch the top 50 child domains, considering the supplied domain name as parent.
MSNCrossDomainFP – Supply an application domain to fetch the top 50 domains pointing to this particular domain on the Internet.
MSNCrawler – Supply a domain or application name to fetch all possible links crawled by the search engine.
MSNFetch – Supply a domain and rules file. The tool will run each rule in the file against the domain specified and fetch the first five results of the resultant query. This can help in assessing an application.
Search.MSN – Provides place to run your search against MSN and gather all URLs.
Any search engine database is a very powerful source of information for web applications. The Search Engine’s spiders are well-powered to run frequently on sites and capture all possible links. As an end user, however, we are more interested in the searching interface and criteria these engines provide. By using their search options, end users can craft intelligent queries against a database and fetch critical information. There are several tools out there that query the Google database and fetch this sort of security-related information about web applications. This paper describes some of the queries that can be run against SEARCH.MSN in order to fetch important information that would eventually help in web application assessment.
MSNPawn is a portable version! So you do not have to install it! Just extract and run.
Operating systems supported:
Windows XP SP2 and above
Download MSNPawn here
Goolag Scanner was released some time last year. It is a dork tool. It is an automated ‘Google search’ application. By ‘Google searching’, we mean the use of dorks, Google Dorks to be precise. Goolag scanner takes advantage of Google dorks and helps you find some impressive information about your web application. In the past, information such as passwords, credit card information, etc have all been discovered via dorks.
