Information gathering is the first and the most important step of a penetration test. More informations you will grab, easier the exploit will be.
Developed by Christian Martorella theHarvester is very usefull for this task. It’s a python script that will help you to find user emails and subdomains of a given domain by merely parsing search engines results. The following data sources are supported :
- google, googleCSE, googleplus, google-profiles
theHarvester is by default installed on Kali Linux. Basic usage is:
theharvester -d <domain> -b <source>