Aktif Bilgi Toplama<\/p>\n
<\/p>\n
Pasif bilgi toplamadan sonra gelir. Bu a\u015famada ise bulunan ip ve servis bilgilerine baz\u0131 ara\u00e7lar arac\u0131l\u0131\u011f\u0131yla tarama yap\u0131l\u0131r. Bu \u015fekilde dns sorgular\u0131, dns versiyon bilgisi, alt alan adlar\u0131 gibi bir \u00e7ok bilgiye ula\u015f\u0131l\u0131r ve bunlar taranarak sistemdeki zaafiyetler bulunur.<\/p>\n
Bunlar\u0131n yan\u0131nda bilgi toplamak i\u00e7in bir\u00e7ok program vard\u0131r. G\u00fcn\u00fcm\u00fczde kullan\u0131lan en geli\u015fmi\u015f ve kullan\u0131\u015fl\u0131 program Maltego\u2019dur. Maltego hem aktif bilgi toplama hem de pasif bilgi toplama yapabilir. Maltego toplad\u0131\u011f\u0131 bilgileri s\u0131n\u0131fland\u0131rarak g\u00f6rsel bir \u015fekilde sunabilir. Maltego neler yapabilir;<\/p>\n
*Alan adlar\u0131<\/strong> Maltego, Windows ,Linux ve Mac i\u00e7in uyumludur. Backtrack i\u00e7inde kuruludur. \u0130ki s\u00fcr\u00fcm\u00fc vard\u0131r Ticari ve Topluluk s\u00fcr\u00fcm\u00fc\u2026<\/em><\/p>\n Ticari S\u00fcr\u00fcm\u00fc:<\/em> Topluluk S\u00fcr\u00fcm\u00fc(\u00fccretsiz):<\/em> Maltego Kullan\u0131m\u0131<\/p>\n \u00d6ncelikle program\u0131 ba\u015flat\u0131yoruz. Sonra solda bulunan altyap\u0131 paletinden ara\u015ft\u0131rmak istedi\u011fimiz b\u00f6l\u00fcm\u00fc se\u00e7iyoruz. Biz Domaini se\u00e7iyoruz ve yukar\u0131da oldu\u011fu gibi s\u00fcr\u00fckle b\u0131rak yaparak i\u00e7 alana getiriyoruz. \u0130lk geldi\u011finde paterva.com olarak gelecektir \u00fczerine \u00e7ift t\u0131klad\u0131\u011f\u0131m\u0131zda istedi\u011fimiz adresi verebiliyoruz. Bizim hedefimiz webguvenligi.net oldu\u011fu i\u00e7in biz webguvenligi.net yazd\u0131k.<\/p>\n <\/p>\n <\/p>\n <\/p>\n <\/p>\n Sa\u011f t\u0131klayarak da istedi\u011fimiz d\u00f6n\u00fc\u015f\u00fcmleri se\u00e7ebiliyoruz. Yukar\u0131da g\u00f6r\u00fcld\u00fc\u011f\u00fc gibi; Dns ad\u0131, domain, ki\u015fi, e-mail adresi, dosya ve telefon numaras\u0131 gibi bir\u00e7ok d\u00f6n\u00fc\u015f\u00fcm mevcut.<\/p>\n <\/p>\n Biz \u00f6rnek olarak Mx kay\u0131tlar\u0131n\u0131 bulmak istiyoruz. Bunun i\u00e7in sa\u011f t\u0131klad\u0131\u011f\u0131m\u0131zda gelen men\u00fcden DNS ad\u0131-MX(mail server) t\u0131kl\u0131yoruz ve a\u015fa\u011f\u0131daki gibi bir \u015fekil \u00f6n\u00fcm\u00fcze \u00e7\u0131k\u0131yor. Ayr\u0131ca iste\u011fe g\u00f6re Ns kay\u0131tlar\u0131 ve ya domaine ba\u011fl\u0131 e-mail adreslerinede ula\u015fabiliyoruz. Bu bilgilerde bizim i\u015fimize yarayacak \u00f6nemli bilgilerdir. \u00c7\u00fcnk\u00fc sisteme s\u0131zamassak bu \u00f6\u011frendi\u011fimiz maillerden herhangi birine s\u0131z\u0131p sisteme onun \u00fczerinden girebiliriz. Onlar\u0131nda ekran g\u00f6r\u00fcnt\u00fcleri a\u015fa\u011f\u0131dad\u0131r. Maltego 4 t\u00fcr algoritma d\u00fczenini destekler. Bu d\u00fczen t\u00fcrleri farkl\u0131 durumlarda en iyi sonucu almam\u0131z i\u00e7indir. Bu y\u00fczden bu 4 d\u00fczeni denemek gerekebilir.<\/p>\n Maltegoda g\u00f6r\u00fcnt\u00fc de 4 \u00e7e\u015fittir.<\/p>\n 1.Madencilik G\u00f6r\u00fcn\u00fcm\u00fc<\/strong><\/p>\n 2. Dinamik G\u00f6r\u00fcnt\u00fc<\/strong><\/p>\n 3. Kenar A\u011f\u0131rl\u0131kl\u0131 G\u00f6r\u00fcnt\u00fc<\/strong><\/p>\n 4. Varl\u0131k Listesi<\/strong> Bu \u015fekilde elimizdeki varl\u0131klar\u0131 4 farkl\u0131 \u015fekilde g\u00f6r\u00fcnt\u00fcleyebiliriz. Az \u00f6nce domain isminde sorgulamalar yapt\u0131\u011f\u0131m\u0131zda kar\u015f\u0131m\u0131za bir \u00e7ok isim \u00e7\u0131km\u0131\u015ft\u0131 ve ara\u015ft\u0131rma yapt\u0131\u011f\u0131m\u0131zda sitenin sahibinin ve yetkilerinin olaca\u011f\u0131n\u0131 d\u00fc\u015f\u00fcnd\u00fc\u011f\u00fcm\u00fcz ki\u015fi \u00dcnl\u00fc A\u011fyol\u2019dur. \u015eimdi biraz \u00dcnl\u00fc A\u011fyol \u00fczerine yo\u011funla\u015fal\u0131m.<\/p>\n <\/p>\n Yan tarafta g\u00f6rd\u00fc\u011f\u00fcn\u00fcz gibi, ki\u015fi \u00fczerine sa\u011f t\u0131klad\u0131\u011f\u0131m\u0131zda gelen men\u00fcden \u201cAll Transform\u201d t\u0131kl\u0131yoruz ki ki\u015finin b\u00fct\u00fcn ba\u011flant\u0131lar\u0131n\u0131 g\u00f6rmek i\u00e7in. Bizden arama adreslerini soracakt\u0131r \u00f6zel bilgiler i\u00e7in, bizde daha \u00f6nce bildi\u011fimiz blog sitesini yaz\u0131yoruz ve a\u015fa\u011f\u0131daki varl\u0131klara ula\u015f\u0131yoruz.<\/p>\n <\/p>\n <\/p>\n <\/p>\n <\/p>\n
\n*Whois bilgileri<\/strong>
\n*Ip adresi veya bir a\u011f\u0131n tespiti<\/strong>
\n*E-posta adresi toplama<\/strong>
\n*Telefon, fax numaralar\u0131<\/strong>
\n*Sosyal payla\u015f\u0131m a\u011flar\u0131<\/strong>
\n*\u0130nsanlar\u0131n ki\u015fisel bilgileri<\/strong>
\n*Sosyal networkler<\/strong>
\n*\u015eirketler, web siteleri<\/strong>
\n*\u0130nternet altyap\u0131s\u0131n\u0131 kullarak domainleri,<\/strong>
\n*IP adreslerini, belgeleri ve dosyalar\u0131 gibi bir\u00e7ok bilgiye ula\u015fabilir.<\/strong><\/p>\n
\nhttp:\/\/paterva.com\/web5\/client\/download.php#Commercial<\/a><\/em><\/p>\n
\nhttp:\/\/paterva.com\/web5\/client\/download.php#Community<\/a><\/em><\/p>\n![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/11-300x236.jpg\" "\\"Maltego")
<\/a><\/p>\n![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/21-300x189.jpg\" "\\"Maltego\\"")
<\/a><\/p>\n
\n![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/31-300x198.jpg\" "\\"Maltego\\"")
<\/a>\u00a0![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/41-300x194.jpg\" "\\"Maltego\\"")
<\/a><\/p>\n
\n![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/91-300x181.jpg\" "\\"Maltego\\"")
<\/a>
\n![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/10-300x177.jpg\" "\\"Maltego\\"")
<\/a><\/p>\n![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/111-300x180.jpg\" "\\"Maltego\\"")
<\/a>![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/12-300x163.jpg\" "\\"Maltego\\"")
<\/a><\/p>\n![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/13-300x178.jpg\" "\\"Maltego\\"")
<\/a>
\nSol paletten tekrar s\u00fcr\u00fckle b\u0131rak y\u00f6ntemi ile Person se\u00e7tikten sonra \u00e7ift t\u0131klayarak yukar\u0131da g\u00f6r\u00fcnd\u00fc\u011f\u00fc gibi isim de\u011fi\u015ftirme k\u0131sm\u0131 gelecektir ve orada ara\u015ft\u0131rmak istedi\u011fimiz ki\u015finin ad\u0131n\u0131 ve soyad\u0131n\u0131 yaz\u0131yoruz.<\/p>\n![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/14-300x202.jpg\" "\\"Maltego\\"")
<\/a>
\nKar\u015f\u0131m\u0131za ki\u015fiye ait mail adresleri, ili\u015fkisi oldu\u011fu ki\u015filer gibi bilgiler ula\u015fm\u0131\u015f oldu. Bu mail adreslerinden ise kullan\u0131lmas\u0131 muhtemel olarak d\u00fc\u015f\u00fcnd\u00fc\u011f\u00fcm\u00fcz adreslerin ba\u011flant\u0131lar\u0131n\u0131 \u00e7\u0131karabiliriz. Biz burada kullan\u0131m\u0131n\u0131n y\u00fcksek oldu\u011fu mailleri deniyoruz.<\/p>\n
![\"\"](\"http:\/\/www.webguvenligi.net\/wp-content\/uploads\/15-300x199.jpg\" "\\"Maltego\\"")
<\/a><\/p>\n