Recon With AI

1 month ago 21

BOOK THIS SPACE FOR AD

ARTICLE AD

Introduction..

There are lot of things available for recon in market (websites, application , cloud..) and all are good. but when it comes to best I will always suggest you to do manual recon because it gives you more results and understanding of your target. In this we will be looking at how I found best method for recon using Chatbots.

Why Chatbots ?

During my recon on target lets say X , I was searching for Origin IP and ASN regarding to X using Shodan, censys and Other tools but NO LUCK!!!! . Because it was behind Cloudflare.

Tried :-

1. using ping got IP and CDN provider. (IP -> provider)

2. Searched and looked for leads with IP and Domain Name

Shodan -> Record Not Found
Censys -> 4 Cloudflare IP with 403.

3. Used tools but -> No Luck

Now suddenly I got an idea why not to try AI for recon , as I have windows I tried to look for X on Copilot and results was amazing. as it was Australian Company.

Achieved:-
1. ABN Number
2. ACN Number
3. ASN Number
4. Peer ASN Number
5. IP-Range 6
Other Details of Company

How I DID 😊

I have used this trick on two most popular AI Chatbots ChatGPT and Copilot , where ChatGPT fails to provide expected results, it could be because my wrong Query. and Copilot rocks by giving all Answers .

Go to Copilot and search -> which organization owns $domainNow go and check WHOIS data. if you found field with any number like Registrant ID etc.details regarding $Registrant_ID and ASN Number.

4. Search for -> Hosts Related to $ASN_NUMBER

Peering Means :-

This statement implies that an organization (represented by the given ASN) has established a peering relationship with another organization (represented by ASN2). The two ASNs are directly connected and exchange traffic without intermediaries.

Read Entire Article