If you want to download hackbot, its here
Hackbot(1)                      Scanning tools                      Hackbot(1)



NAME
       Hackbot - Host exploration and bannergrab tool

SYNOPSIS
       hackbot.pl   [-VOAitfmsSdprX][-P   ][-a  ][-z  ][-l
       ][-g  ][-w  avociun]]  [|-F  ]



DESCRIPTION
       Hackbot is a vulnerability and bannergrabber meant as auditory tool for
       remote and local hosts. Hackbot  requires  PERL  (http://www.perl.org),
       IO::Socket,  Net::hostent  and  Getopt::Std which should come with your
       default PERL installation.

PLATFORMS
       Hackbot should work on all UNIX platforms which have perl and the  
       necessary modules installed.

OPTIONS
       -O log to output file.

       -A All scan types.

       -i Ident scan.

       -t Telnet fingerprinting.

       -f FTP scan, grabs FTP banner and checks for
          anonymous user login.

       -m MTA scan, grabs MTA banner and checks for
          open relay, EXPN and VRFY.

       -s SSH scan, grabs SSH banner.

       -S Check target host with spamcop's database

       -d DNS scan, grabs DNS version.

       -p POP3 scan

       -r Registrar whois lookup.

       -V Print Version and exit.

       -P Scan via proxy.

       -l loglevel sets loglevel state, see LOGLEVEL OPTIONS below.

       -g    Google search, uses strings from google.db when -A option
       is used. See GOOGLE SEARCH section below

       -w Webserver scan, various options, see the
          WEBSERVER OPTIONS section below.

       -z NN Set time in seconds between each CGI poll (to be  less  
          conspicuous).

       -a NN Set alternative webserver port.

       -X X allow check.

       -F Reads hostnames or IP's from a targetfile.

WEBSERVER OPTIONS
       Webserver scan types:

       a All webserver scans.

       v Check webserver version.

       o Check for webserver PUBLIC and ALLOW options.

       c CGI scan, scans for commonly exploitable CGI's

       i IDA, IDC, IDQ scan, scans for path revealing NT
          problems.

       u Unicode scan, scans for NT unicode vulnerabilities.

       n Nimda scan, scans for eml files in website html
          source, works best combined with -c option.

LOGLEVEL OPTIONS
       Loglevel states:
                       c  critical (default)
                       v  verbose
                       d  debug

       c Critical only list information that is important.

       v Verbose same as above + might-be-interesting-stuff.

       d  Show  all  normal scaninfo, All socketinfo, data and show additional
       'tagpoints'.


SCANOUTPUT
       The output of the scan is placed in output.host files or, when  the  -O
       option is used, it is placed in the given output file

SCANOUTPUT EXAMPLE
       output.127.0.0.1
       output.www.yourdomain.name
       or,  when  -O  option  is defined, output is placed in the given output
       file.


EXAMPLES
       FTP, MTA and webserver options, CGI and IDA scan

       $ hackbot.pl -f -m -w oci localhost

       ALL scans

       $ hackbot.pl -A localhost

       or from a file

       $ hackbot.pl -A -F file_with_hosts

       or with ranges and output file

       $ hackbot.pl -O logfile -A 192.168.1.1 192.168.1.255

       or with CIDR's

       $ hackbot.pl -A 192.168.1.0/24

       NOTE: CIDR masks < /24 are currently unsupported.

       or with a higher loglevel

       $ hackbot -A -lv 192.168.1.1






GOOGLE SEARCH
       The google search is issued  with  the  -A  option  by  default  (using
       google.db), a manual scan can be done this way:

       hackbot.pl -g string host

       For instance:

       $ hackbot.pl -g britney www.geocities.com

       Hackbot will search for URL's containing 'britney' on 
       http://www.geocities.com via google. As example.

       It could find this for instance:

       http://www.geocities.com/britney.html
       http://www.geocities.com/~user/britney.txt


       etc..

AUTHORS
       Marco van Berkum - marco@stream-portal.org
       Kristian Vlaardingerbroek 
       Pepijn Vissers
       Martijn Mooijman
       Herman Poortermans
       Guido Barosio

BUGS
       All bugs can be reported to marco@stream-portal.org, before  reporting  
       bugs please refer to the KNOWN_BUGS file first.

LICENSE
       Hackbot is licensed under the LGPL License, see LICENSE for more 
       information.

DISCLAIMER
       The author of this program _CANNOT_ be held responsible for any illegal
       scanning  activities  initiated  by an user or unauthorised party. This
       program is meant as tool to determine your OWN network  security.   Any
       unauthorised  probes  with  this  program  should  be reported to local
       authorities and/or to the attacker himself. Complaints  to  my  address
       regarding  the unauthorised use of this program will be moved unseen to
       /dev/null.



Marco van Berkum                     2.21                           Hackbot(1)