Website Dns analysis Information Gathering - UrlCrazy

URLCrazy is a tool written by Andrew Horton. Its purpose is to generate and test domain types, and variations to detect and perform typo squatting, URL Hijacking, phishing , and corporate espionage.

It generates 15 types of domain variants, knows over 8000 common misspellings, supports multiple keyboard layouts, can check if a typo is a valid domain, tests if domain typos are in use, and estimates the popularity of a typo.

Usage

• Detect mistake squatters profiting from typos on your domain name
• Protect your complete by registering popular typos
• Identify typo domain names that may receive traffic meant for another domain
• Conduct phishing attacks throughout a penetration test

Features

• Generates fifteen types of domain variants
• Knows over 8000 common misspellings
• Supports cosmic ray induced bit flipping
• Multiple keyboard layouts (qwerty, azerty, qwertz, dvorak)
• Checks if a site variant is valid
• Test if domain variants are in use

Options/Switches

"-k" is used to change the keyboard layout. using totally different layouts might offer you a better view of typos that might occur in different countries, and the way the dangerous guys could also be generating domains there.

"-p" option shows however typically that specific domain spelling might show up in Google results, or however often someone searches for that specific spelling. you may want to verify this manually through Google.

"-r" causes urlcrazy to not resolve any domain names to ip addresses, therefore, only giving you a list of generated domains.

"-i" can show invalid domain names, like invalid TLD’s

"-f" allows you to specify the output type; there square measure 2 options here – human readable, and CSV; default is human readable

"-o" lets you create a file containing the results of your scan.

Lets start with URLCrazy

Step 1 : - This command is used to scan a url after scanning we can see names of the characters on the wrong web, Spelling reversed etc kindly use this command and see yourself I cant show you whole image here.

Then Enter you Target Website that you want to do Dns analysis Information Gathering.

Here I have used "techtrick.in" for demo purpose.

urlcrazy www.techtrick.in

Step 2 :- "-k" is used to change the keyboard layout. Using different layouts could give you a better view of typos that would occur in other countries, and how the bad guys may be generating domains there.

urlcrazy www.techtrick.in -k qwerty

Step 3 :- "-i" will show invalid domain names, such as invalid TLD’s

urlcrazy -i www.techtrick.in

I hope you enjoyed this article.