iGuRu.gr

  • / news
  • / infosec
  • / dummies
  • / tools
  • / tweaks
  • / opinions
  • /community
  • /reddit
Search

iGuRu.gr

You are here:

  1. Home
  2. tools
  3. FOCA: Find metadata and hidden information in documents

FOCA: Find metadata and hidden information in documents

by Anastasis Vasileiadis 05/06/2020, 16:46

Το FOCA (Fingerprinting Organizations with Collected Archives) είναι ένα tool που χρησιμοποιείται κυρίως για την εύρεση metadata and hidden information in the documents it scans.

These documents can be found on websites and can be downloaded and analyzed with FOCA.

It is able to analyze a wide variety of documents, most commonly Microsoft Office, Open Office, or PDF files, although it also analyzes Adobe InDesign or SVG files.

These documents can be found in the search engines: Google, Bing and DuckDuckGo. The sum of the results from the three machines amounts to many documents. It is also possible to add local files to extract EXIF ​​information from graphics files and a full analysis of the information discovered via the URL is done even before the file is downloaded.

FOCA includes a server tracking module, which aims to automate their search process using backlinks. The techniques used in this regard are:

  • Web Search
    Searches for host and domain names by searching for URLs related to the main domain, each link is parsed to extract new host and domain names from it.
  • DNS Search
    Each domain will be asked which hostnames are configured on the NS, MX, and SPF servers to discover new hostnames and domain names.
  • IP Resolution
    Each hostname will be resolved against DNS to obtain the IP address associated with that server name. To make this task as accurate as possible, the query is made against an internal DNS of the organization.
  • PTR Scanning
    To find more servers in the same segment of a given IP address, FOCA will scan a PTR record.
  • Bing IP
    For each IP address discovered, a new domain name associated with that IP address will be started.
  • Common names
    This section is designed to execute dictionary attacks against DNS. Use a text file where you add a list of common hostnames, such as ftp, pc01, pc02, intranet, extranet, internal, test, and so on.
  • DNS Prediction
    It is used for those environments in which a computer name has been discovered that may give rise to the thought that a template is being used in the naming system.
  • Robex
    Robtex is one of the many services available on the Internet for the analysis of IP addresses and domains, FOCA uses it to try to discover new domains based on the information available to Robtext.

System requirements

  • Microsoft Windows (64 bits). Versions 7, 8, 8.1 and 10.
  • Microsoft. NET Framework 4.7.1.
  • Microsoft Visual C ++ 2010 x64 or newer.
  • sql Server & Hosting 2014 or later.

Application snapshots

Video guide

https://www.youtube.com/watch?v=m5fqI5WPB5g&feature=emb_title

Download the program from here.

iGuRu.gr The Best Technology Site in Greecefgns

Subscribe to Blog by Email

Subscribe to this blog and receive notifications of new posts by email.

spread the news

  • Twitter
  • Facebook
  • Reddit
  • Mastodon
  • Email
  • Printing

20102014adobebingbitsdnsduckduckgoexiffingerprintingframeworkFTPgooglegraphicshttpsintranetIPmetadataMicrosoftMicrosoft OfficeMicrosoft WindowsnamesofficeopenpdfscanningserverSPFSQLSQL ServertestURLvisualwatchwebsiteswindowsyoutube

See more

  • Previous article Kaiten: Undetectable Payload Generation
  • Next article Apple Password Manager Resources the first open source

Written by Anastasis Vasileiadis

Translations are like women. When they are beautiful they are not faithful and when they are faithful they are not beautiful.

Leave a reply Ακύρωση απάντησης

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).



Next post

© 2012 - 2023 · iGuRu.gr · ☢ · Keep It Simple Stupid theme

  • / about
  • / contact
  • / rss
  • / depositphotos
  • /pp
Close
  • / news
  • / infosec
  • / dummies
  • / tools
  • / tweaks
  • / opinions
  • /community
  • /reddit