recon-ng V5.0更新版パッシブ情報収集


苑先生kali linuxチュートリアルのRECON-NGチュートリアルを見たばかりで、多くのコマンドが変更されましたが、ネット上ではrecon-ngの新しいバージョンの紹介が少なく、記録に書きました.
recon-ngを入力してrecon-ngを開きます
root@kali:~# recon-ng 
[*] Version check disabled.

    _/_/_/    _/_/_/_/    _/_/_/    _/_/_/    _/      _/            _/      _/    _/_/_/
   _/    _/  _/        _/        _/      _/  _/_/    _/            _/_/    _/  _/       
  _/_/_/    _/_/_/    _/        _/      _/  _/  _/  _/  _/_/_/_/  _/  _/  _/  _/  _/_/_/
 _/    _/  _/        _/        _/      _/  _/    _/_/            _/    _/_/  _/      _/ 
_/    _/  _/_/_/_/    _/_/_/    _/_/_/    _/      _/            _/      _/    _/_/_/    


                                          /\
                                         / \\ /\
    Sponsored by...               /\  /\/  \\V  \/\
                                 / \\/ // \\\\\ \\ \/\
                                // // BLACK HILLS \/ \\
                               www.blackhillsinfosec.com

                  ____   ____   ____   ____ _____ _  ____   ____  ____
                 |____] | ___/ |____| |       |   | |____  |____ |
                 |      |   \_ |    | |____   |   |  ____| |____ |____
                                   www.practisec.com

                      [recon-ng v5.0.0, Tim Tomes (@lanmaster53)]                       

[1] Recon modules
[recon-ng][default] > 

Recon-ng 5の最大の変更はモジュールがなく、ダウンロードが必要です.モジュールのダウンロード方法について説明します.
1.marketplace refresh更新モジュールリストを入力
[recon-ng][default] > marketplace refresh
[*] Marketplace index refreshed.
[recon-ng][default] > 

2.marketplace search hackertarget検索モジュールインデックスを入力
[recon-ng][sina] > marketplace search hackertarget
[*] Searching module index for 'hackertarget'...

  +-----------------------------------------------------------------------------+
  |               Path               | Version |   Status  |  Updated   | D | K |
  +-----------------------------------------------------------------------------+
  | recon/domains-hosts/hackertarget | 1.0     | installed | 2019-06-24 |   |   |
  +-----------------------------------------------------------------------------+

  D = Has dependencies. See info for details.
  K = Requires keys. See info for details.

[recon-ng][sina] > 

3.marketplace install recon/domains-hosts/hackertargetを入力し、hackertargetモジュールをインストールする
[recon-ng][default] > marketplace install recon/domains-hosts/hackertarget
[*] Module installed: recon/domains-hosts/hackertarget
[*] Reloading modules...
[recon-ng][default] > 

4.modules load recon/domains-hosts/hackertargetロードモジュールを入力
[recon-ng][default] > modules load recon/domains-hosts/hackertarget
[recon-ng][default][hackertarget] > 

info表示情報の入力
[recon-ng][default][hackertarget] > info

      Name: HackerTarget Lookup
    Author: Michael Henriksen (@michenriksen)
   Version: 1.0

Description:
  Uses the HackerTarget.com API to find host names. Updates the 'hosts' table with the results.

Options:
  Name    Current Value  Required  Description
  ------  -------------  --------  -----------
  SOURCE  default        yes       source of input (see 'show info' for details)

Source Options:
  default        SELECT DISTINCT domain FROM domains WHERE domain IS NOT NULL
         string representing a single input
           path to a file containing a list of inputs
  query     database query returning one column of inputs

[recon-ng][sina][hackertarget] > 

4.options set SOURCE rapid 7を入力.com,変更オプションSOURCEはrapidを表示する.comホスト
[recon-ng][default][hackertarget] > options set SOURCE rapid7.com
SOURCE => rapid7.com
[recon-ng][default][hackertarget] > run

----------
RAPID7.COM
----------
[*] [host] rapid7.com (13.249.47.238)
[*] [host] scanner1.labs.rapid7.com (71.6.233.2)
[*] [host] scanner2.labs.rapid7.com (71.6.233.129)
[*] [host] scanner3.labs.rapid7.com (31.24.231.211)
[*] [host] scanner4.labs.rapid7.com (31.24.231.223)
[*] [host] sonar.labs.rapid7.com (34.236.82.205)
...

モジュール追加完了、show hostsを入力して表示
[recon-ng][default] > show hosts

  +---------------------------------------------------------------------------------------------------------------------------------+
  | rowid |                     host                     |    ip_address   | region | country | latitude | longitude |    module    |
  +---------------------------------------------------------------------------------------------------------------------------------+
  | 1     | rapid7.com                                   | 99.84.219.205   |        |         |          |           | hackertarget |
  | 2     | hostedconsole-pso-01.rapid7.com              | 208.118.237.241 |        |         |          |           | hackertarget |
  | 3     | securitysolutions-01.rapid7.com              | 208.118.237.81  |        |         |          |           | hackertarget |
  | 4     | smtp001.rapid7.com                           | 64.125.235.5    |        |         |          |           | hackertarget |
  | 5     | va1.rapid7.com                               | 208.118.237.38  |        |         |          |           | hackertarget |
  | 6     | smtp002.rapid7.com                           | 208.118.227.12  |        |         |          |           | hackertarget |
  | 7     | va2.rapid7.com                               | 208.118.237.39  |        |         |          |           | hackertarget |
  | 8     | owa2.rapid7.com                              | 208.118.227.14  |        |         |          |   
  ..............................................................................................................................................
  | 134   | www.rapid7.com                               | 13.32.204.13    |        |         |          |           | hackertarget |
  | 135   | cf-gagvufh363u546y.rapid7.com                | 35.169.78.237   |        |         |          |           | hackertarget |
  | 136   | legacy.rapid7.com                            | 208.118.227.15  |        |         |          |           | hackertarget |
  | 137   | community.rapid7.com                         | 34.210.186.136  |        |         |          |           | hackertarget |
  +---------------------------------------------------------------------------------------------------------------------------------+

[*] 137 rows returned
[recon-ng][default] >