This release implements DNS queries against multiple DNS servers, a more efficient threading algorithm and some minor bug fixes.

Quoting from the tool’s official website:

TXDNS main goal is to expose a domain namespace trough a number of techniques:

-Typos
-TLD rotation
-Dictionary attack
-Brute force

TXDNS may be used to:

- Fill the reconnaiscence gap left due to DNS servers hardening, as dns-zone transfers are much like to fail.
- Dig a given domain name for possible phishing variations based on common well-known typo algorithms and return dns queries on both used and not used names.
- Stress-test DNS servers due is configurable aggressive behaviour.

TXDNS provides some cool options, such as:

- Perform queries only for a given Resource Record type:
A, CNAME, HINFO, NS, TXT & SOA
- Perform non-recursive queries.
- Perform queries against a given DNS server.

Read more about the latest version.

Download TXDNS v2.1.5

It is multi threaded and can audit more than one system and account in a given session.

Download SSHatter-0.2

The following utility allows you to decipher an obfuscated IP and make it easier for yourself to track down spammers, scammers and software pirates.

IP obfuscator/de-obfuscator: http://www.odditysoftware.com/page-webtools5.htm

Another link: http://www.treachery.net/tools/obfuscator.html

Furthermore, here is an interesting tutorial on “How to obscure any URL”.
This is a description of what obfuscation is (from OdditySoftware.com):

So you don’t understand what Obfuscation is? Lets look at an idea of employing it as URL Obscuration.

For example, start with the regular Google URL: http://www.google.com
And convert it to IP: http://64.233.161.104
Then add some bogus authentication gibberish: http://www.msnbc.com@64.233.161.104
And convert the real URL into a single number with the calculator above so it looks like a document on the MSNBC web site: http://www.msnbc.com@1089053032 Paste this link in your browser, and where does it go? That’s right… Google.

Believe it or not, this is just the tip of the iceberg. In some browsers, even the IP address numbers can be expressed using “percent sign” ASCII encoding.

Note: It requires Microsoft .NET Framework 2.0 and Winpcap.

Furthermore, the features of NMapView are the following:

- Automatic composition of the string of command based on selection of checkbox, textbox, ecc.
- Automatic selection of checkbox and textbox, etc. based on tightens of insert comand string.
- In the composition commands, the options of version 4.20 of Nmap are previewed all.
- Supported version NSE (Nmap Scripting Engine) by Diman Todorov. Found doc in http://insecure.org/nmap/nse/
- Of every option or parameter one detailed description through ToolTipHelp is supplied.
- The configuration parameters that preview text are history between the varius sessions. (The story memory use Windows user login section).
- The option and the parameters are distributed in logical section (Targhet specification, Host Discover, Scan Techniques, etc.) based on the documentation of Fiodor.
- Management list of commands throught rows database XML.
- Callback of editor external for .nse script.
- Colorized: coloration and font combination, of the output of nmap, free and of any complexity through editor of Regex (Regular expressions) filters.
- It se possible to start more commands nmap at the same time. You execute yourself in different task and windows.
- One shot clipbord copy Command, for express past in shell dos.
- The historical archives, of the output commands.
- The Windows of command report, the standard flow output, than the flow of error.
- View in hierarchical tree Structure the raw XML data. (output ad file).
- The output file XML , if present, it is intercepted ad loaded in the Tab “XML File Vew” to the end of the command.
- NmapView is freeware software redistribute it and/or modify it under the terms of the GNU LESSER GENERAL PUBBLIC LICENSE.
- Source and info available in FORUM zone.

For more information about NMapView, visit its homepage.

Download NMapView v0.5

To run googlegath.pl, three things are required: the perl interpreter, the Net::Google perl module and Google API. You can use it under Windows with Active Perl interpreter.

Example usages:

./googlegath.pl -a /backup/ -s gov -f txt -m 10
./googlegath.pl -a /cgi-bin/ -s com -k awstats -m 10 -d
./googlegath.pl -a /cgi-bin/ -s de -f pl -m 10 -d
./googlegath.pl -a /scripts/ -s edu -f cgi -m 10 -l logfile.html
./googlegath.pl -s edu -f cgi -m 20 -d
./googlegath.pl -t “VNC Desktop” -i 5800 -m 10 -d -l logfile.html
./googlegath.pl -i “main.php” -k “phpMyAdmin” -s com -m 10

Using googlegath.pl to search for VNC (Virtual Network Computing) desktops running on port 5800:

$ ./googlegath.pl -t “VNC Desktop” -i 5800 -m 10 -d -l logfile.html

[+] inurl:5800 intitle:”VNC Desktop”
http://robot.mc3.edu:5800/ robot.mc3.edu 38.115.60.99
http://129.82.106.115:5800/ 129.82.106.115 129.82.106.115
http://66.97.228.100:5800/ 66.97.228.100 66.97.228.100
http://12.207.102.150:5800/ 12.207.102.150 12.207.102.150
http://12.207.107.126:5800/ 12.207.107.126 12.207.107.126
http://moment.myftp.org:5800/ moment.myftp.org 124.6.20.156
http://69.48.1.32:5800/ 69.48.1.32 69.48.1.32
http://134.241.2.76:5800/ 134.241.2.76 134.241.2.76
http://84.177.42.59:5800/ 84.177.42.59 84.177.42.59
http://203.185.224.34:5800/ 203.185.224.34 203.185.224.34

[+] log file logfile.html created.

In the wrong hands, information gathering – such as the above examples – can be used for malicious purposes. Therefore, the way that googlegath.pl will be used, depends on the individual’s legal and ethical attitudes.

googlegath.pl:

http://www.nothink.org/perl/googlegath/googlegath.txt
http://www.ddosed.com/uploads/information_gathering/googlegath.txt