Kali Linux tools – dnstwist

Discovering Typosquatting Domains with dnstwist

dnstwist is an open-source domain name permutation engine — a typosquatting detection tool used in cybersecurity to identify suspicious or malicious domains that look similar to legitimate ones.

dnstwist generates hundreds of typo variations (e.g., goggle.com, gooogle.com, g00gle.com) based on a target domain and checks:
-If those domains are registered
-Whether they resolve to IP addresses
-If they have DNS, MX, or WHOIS info
-(Optional) Whether they are serving web content, potentially phishing pages

Built into Kali Linux
You can run it without installing anything

Why It’s Useful (in Cybersecurity & OSINT)
-Detect phishing campaigns targeting your brand
-Monitor brand abuse or lookalike domains
-Alert your clients of malicious typosquat domains
-Enhance security posture in red team and blue team scenario

Goal:
Check for domains that look similar to your real domain (like gooogle.com, g00gle.com, etc.). These are often used for phishing, malware, or impersonation — a classic typosquatting tactic.

[mai mult...]

Linux: using grep + find to locate stuff fast

In Linux, grep and find are two powerful command-line tools that, when combined, allow you to quickly search and locate files and content on your system.

  • find helps you search for files and directories based on various criteria, such as name, size, modification date, and more.

  • grep is used to search for specific content within files, making it perfect for finding text patterns or keywords inside files.

it’s a must-know skill for navigating and searching in Linux
Goal:
Find specific files or content inside files — fast.

[mai mult...]

Steganography: hiding messages inside images using Steghide

What is Steghide?
Steghide is a command-line tool used for steganography, which is the practice of hiding secret data inside files like images or audio files. It allows you to embed and extract hidden information from JPEG, BMP, WAV, and AU files while keeping the original file looking unchanged.

Key Features of Steghide
✅ Hides data inside images and audio files without visibly altering them
✅ Uses encryption (AES-128 by default) to protect the hidden data
✅ Compresses data before embedding to save space
✅ Preserves the original file format and properties, making detection harder.

[mai mult...]

Extract hidden metadata from Files with ExifTool

Ever wonder what hidden info might be lurking inside an image or document? Many files store metadata—like camera details, GPS coordinates, timestamps, and even usernames—without the owner realizing it. With ExifTool, you can pull out this data in seconds.

ExifTool is a command-line tool used to extract, analyze, and modify metadata in files like images, PDFs, and videos. Metadata includes hidden details such as:

  • Camera info (model, lens, settings)
  • Timestamps (creation, modification dates)
  • GPS coordinates (where a photo was taken)
  • Software used (Photoshop, MS Word, etc.)

It’s pre-installed in Kali Linux and widely used in digital forensics, OSINT, and privacy audits.

[mai mult...]