Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
's
D0xing
to
Note from the publisher: The content in this doc was written and collected by MLT, who is not the person who created the .PDF of this book. The publisher only fitted the content into the design and added a few links and some typos maybe.
=D0x
What is doxing?
First off, I would like to start with a disclaimer, this guide is only for educational purposes, and I do not recommened carrying out the methods described within this guide. Now, onto doxing. Doxing, is the term used for the process of gathering personal information on a victim/target, although this does commonly take place over the internet, this isnt always the case. There are many methods of doxing, and various tools available over the internet.
Where to begin?
Basically, any personal information you have on the victim will be helpful, whether it be a facebook page, their full name(or even their first name), their general location, their phone number, anything. Social-Engineering is very closely related to doxing, as you can social-engineer the victim into revealing information about themselves. A good knowledge on how to trace IPs can also be helpful, as say, for example, if you have a full name, but no location, searching for that one name out of the whole world.. theres going to be a lot of people with that name, but if youre searching for someone with that name, living in a certain city (based on location of their ISP), it narrows it down, drastically. If they own a website, a simple WHOIS search will save you a lot of time. I am going to go through multiple scenarios, based upon potential information one could have on a victim.
Usernames/Aliases: Real name: Real Nickname(s): Location: Ethnicity: Nationality: Pictures: Videos: Religious Views: Sexual Orientation: Home number: Mobile number:
IP address: Websites owned: Social-Networking pages: Forums theyve posted in: Family members: Occupation: Criminal Record: Car make, model and liscence number: List of all websites with their info on: Misc. information:
Tip!
Maltego, developed by Roelof Temmingh, Andrew Macpherson and their team over at Paterva, is a premier information gathering tool that allows you to visualize and understand common trust relationships between entities of your choosing. Currently Maltego 3 is available for Windows and Linux. There is also an upcoming version for Apple users that has yet to be released. Demo version is free to use and all youll need for your first few d0x ops.
If youre on a website with the victim, you can get their IP by them seeing an image you have hosted. You will need a website for this. Host an image on your website, and put it as your avatar, Private Message the victim, then view the visitor logs for your website, and the victims IP will be available. This can also be achieved using a php dynamic image, and the .htaccess trick, although this is a lot more complex. You could also simply send the victim a link to your site, and then view their IP that way.
EXIF DATA
Exif data is completely underrated, if the user has an iPhone, or another phone with GPS tracking enabled(lots of phones do, such as various N series Nokais, and pretty much any phone using the Android operating system, a few cameras do also.) then you can find the GPS location, which is usually accurate by the nearest hundred metres, of exactly where they were when they took their photo. Some Phones and Cameras even tell you the name of the victim within their .exif data. An online .exif data viewer can be found http://regex.info/exif.cgi. You simply choose an image from the web, or upload your own image. Firefoxs new file API can be used for viewing .exif data, and be found here. There can be an .exif data viewer firefox add-on found http://hacks.mozilla. org/2009/12/firefox-36-fileapi-demo-reading-exif-data-from-a-local-jpeg-file/, its very user-friendly, you simply right click the victims picture, and the .exif data will open up in a new window.
Linkage
NOTE: Not all of these links work. You might encounter some broken ones or some changes to
sites (no longer offering free services etc.)
http://www.ip-adress.com/ip_tracer/ http://www.zabasearch.com/ http://www.zoominfo.com/ http://www.freeality.com http://www.isearch.com http://www.whitepages.com/find_neighbors http://www.411.com/ http://www.google.com/search?hl=en&pb=r&q=NAME+HER E+%28first+or+last+or+b oth%29+optional%3A+state%2F zipcode%2Fcity%2Fetc. http://infobel.com http://www.pipl.com/ http://com.lullar.com/ http://www.checkusernames.com/ http://www.ip2location.com/ http://www.paterva.com/web5/ http://www.archive.org/index.php http://www.emailchange.com/ http://www.selfseo.com/find_ip_address_of_a_website.php http://tvtropes.org/pmwiki/el.php?findfor=InsertNameHere http://tineye.com/ http://regex.info/exif.cgi http://www.192.com/ http://www.criminalsearches.com/ http://www.blackbookonline.info/ http://skipease.com/ http://www.whoishe.com/ http://www.usaphonelookup.com/ http://phonenumbers.addresses.com/phone.php www.spokeo.com http://pastehtml.com/view/b1026x5qu.html www.ipeople.com https://www.facebook.com/directory/people/ www.whitepages.com www.yasni.com www.skipease.com www.peekyou.com www.soople.com www.zaba.com http://www.zabasearch.com/ Abika.com freeality.com radaris.com www.fonefinder.net http://wink.com/ http://spock.com http://socialmention.com/ http://www.whostalkin.com/ (this is one of my favorites! Lots of socnets included!) http://www.samepoint.com/ http://www.oneriot.com/ http://www.kosmix.com/
www.yacktrack.com www.keotag.com/ twoogel.com knowem.com http://www.lytebyte.com/2008/03/01/how-to-find-your-cellphones-email-address/ http://textsurprise.com/index.php http://www.clamtxt.com/ http://www.freesmsbundles.com/ http://www.sendmassage.com http://m.websmsonline.com/index.php http://pumpsms.com/index.php http://pastehtml.com/view/b1026x5qu.html www.pipl.com www.ipeople.com https://www.facebook.com/directory/people/ www.whitepages.com www.yasni.com www.skipease.com www.peekyou.com www.soople.com www.zaba.com http://www.zabasearch.com/ Abika.com freeality.com radaris.com www.fonefinder.net http://wink.com/ http://spock.com http://socialmention.com/ http://www.whostalkin.com/ http://www.samepoint.com/ http://www.oneriot.com/ http://www.kosmix.com/ www.yacktrack.com www.keotag.com/ twoogel.com knowem.com http://yahoo.intelius.com/ http://www.findermind.com/free-people-search-engines/ http://www.peekyou.com/ http://aad.archives.gov/aad/series-list.jsp?cat=GS29 http://www.192.com/ http://www.freecellphonedirectorylookup.com http://pastehtml.com/view/bh59gkh7b.html# http://www.archive.org/web/web.php http://www.numberway.com/phone-numbers/3/ https://www.vinelink.com/vinelink/initMap.do http://www.jailbase.com/en/sources/fl-lcso/ http://publicrecords.onlinesearches.com