Bing-IP2hosts – Enumerate hostnames for an IP using bing.com. This is useful during the reconnaissance phase of a penetration test and for website hosting provider research.
Introduction
Bing.com is a search engine owned by Microsoft formerly known as MSN Search and Live Search. It has a unique feature to search for websites hosted on a specific IP address. This feature is can be used with the IP: parameter in the search query as shown in the image above.
Bing-ip2hosts uses this feature to enumerate all hostnames which Bing has indexed for a specific IP address. This technique is considered best practice during the reconnaissance phase of a penetration test in order to discover a larger potential attack surface. Bing-ip2hosts is written in the Bash scripting language for Linux. This uses the mobile interface and no API key is required.
Download
License GPLv3
Author Andrew Horton aka urbanadventurer, MorningStar Security
Download http://www.morningstarsecurity.com/downloads/bing-ip2hosts-0.2.tar.gz
Older Versions
Version 0.1, December 2009 http://www.morningstarsecurity.com/downloads/bing-ip2hosts-0.1.tar.gz
Usage
$ ./bing-ip2hosts
Usage: ./bing-ip2hosts [OPTIONS]
bing-ip2hosts (0.2) by Andrew Horton aka urbanadventurer, MorningStarSecurity
Homepage: http://www.morningstarsecurity.com/research/bing-ip2hosts
Enumerate hostnames from Bing.com for an IP address.
Bing.com is Microsoft's search engine which has an IP: search parameter.
You can enter an IP or a hostname that will be resolved to an IP.
OPTIONS are:
-n Turn off the progress indicator animation
-t <DIR> Use this directory instead of /tmp. The directory must exist.
-i Optional CSV output. Outputs the IP and hostname on each line, separated by a comma.
-p Optional http:// prefix output. Useful for right-clicking in the shell.
Example usage and output
$ ./bing-ip2hosts treshna.com
-
annaklekottka.com
demo.gymmaster.co.nz
dressfordialogue.com
dru.treshna.com
etrusco.co.nz
ignavus.net
kiwiorchid.com
nzbridgecongress.co.nz
nzcps.treshna.com
sizexchange.com
trevinosweb.treshna.com
wainuipark.org
www.adrianmotel.co.nz
www.akaroabus.co.nz
www.bridge-christchurch.org.nz
www.cactus.co.nz
www.cricklewoodhouse.co.nz
www.dressfordialogue.com
www.etrusco.co.nz
www.glaciervalley.co.nz
www.hurunuihotel.co.nz
www.ignavus.net
www.jackiescars.co.nz
www.keungcorp.co.nz
www.kiwiorchid.com
www.kokiribnb.co.nz
www.ladychatterley.co.nz
www.massivenz.com
www.nzkiosk.co.nz
www.totalbinsupplies.co.nz
www.treshna.com
www.waterfordpress.co.nz
www.wildernessaccommodation.co.nz
www.wildernesswings.co.nz
www.zqnbalmoral.co.nz
xchange.sizexchange.com