Website Dns analysis Information Gathering - UrlCrazy


URLCrazy is a tool written by Andrew Horton. Its purpose is to generate and test domain types, and variations to detect and perform typo squatting, URL Hijacking, phishing , and corporate espionage.

It generates 15 types of domain variants, knows over 8000 common misspellings, supports multiple keyboard layouts, can check if a typo is a valid domain, tests if domain typos are in use, and estimates the popularity of a typo.


Usage

  • Detect mistake squatters profiting from typos on your domain name
  • Protect your complete by registering popular typos
  • Identify typo domain names that may receive traffic meant for another domain
  • Conduct phishing attacks throughout a penetration test

Features

  • Generates fifteen types of domain variants
  • Knows over 8000 common misspellings
  • Supports cosmic ray induced bit flipping
  • Multiple keyboard layouts (qwerty, azerty, qwertz, dvorak)
  • Checks if a site variant is valid
  • Test if domain variants are in use

Options/Switches

"-k" is used to change the keyboard layout. using totally different layouts might offer you a better view of typos that might occur in different countries, and the way the dangerous guys could also be generating domains there.

"-p" option shows however typically that specific domain spelling might show up in Google results, or however often someone searches for that specific spelling. you may want to verify this manually through Google.

"-r" causes urlcrazy to not resolve any domain names to ip addresses, therefore, only giving you a list of generated domains.

"-i" can show invalid domain names, like invalid TLD’s

"-f" allows you to specify the output type; there square measure 2 options here – human readable, and CSV; default is human readable

"-o" lets you create a file containing the results of your scan.


Lets start with URLCrazy

Step 1 : - This command is used to scan a url after scanning we can see names of the characters on the wrong web, Spelling reversed etc kindly use this command and see yourself I cant show you whole image here.

Then Enter you Target Website that you want to do Dns analysis Information Gathering.

Here I have used "techtrick.in" for demo purpose.

urlcrazy www.techtrick.in

Website Dns analysis Information Gathering


Website Dns analysis Information Gathering


Step 2 :- "-k" is used to change the keyboard layout. Using different layouts could give you a better view of typos that would occur in other countries, and how the bad guys may be generating domains there.

urlcrazy www.techtrick.in -k qwerty

Website Dns analysis Information Gathering


Step 3 :- "-i" will show invalid domain names, such as invalid TLD’s

urlcrazy -i www.techtrick.in

Website Dns analysis Information Gathering


I hope you enjoyed this article.



Sharing is caring

google
linkedin

About Author

Akash is a co-founder and an aspiring entrepreneur who keeps a close eye on open source, tech giants, and security. Get in touch with him by sending an email (akashchugh1994@gmail.com).


You may also like :-




Leave a Comment

Your email address will not be published. Required fields are marked *




Reader Comments [2]

julianakump

Thank you for the good writeup. It in fact was a amusement account it.
Look advanced to more added agreeable from you! By the way, how can we communicate?

04-Apr-2019

Reply

yeezy

Thanks a lot for providing individuals with an exceptionally pleasant possiblity to discover important secrets from this site. It is always very pleasant and as well , full of a great time for me and my office fellow workers to search the blog particularly three times every week to study the latest issues you have got. And indeed, I'm so at all times motivated with all the awesome thoughts served by you. Some 1 points in this article are rather the most beneficial I've had.

15-Sep-2019

Reply

Stay Connected

Popular Posts

Get Latest Stuff Through Email


Who Should Read TechTrick?

All the tricks and tips that TechTrick provides only for educational purpose. If you choose to use the information in TechTrick to break into computer systems maliciously and without authorization, you are on your own. Neither I (TechTrick Admin) nor anyone else associated with TechTrick shall be liable. We are not responsibe for any issues that caused due to informations provided here. So, Try yourself and see the results. You are not losing anything by trying... We are humans, Mistakes are quite natural. Here on TechTrick also have many mistakes..