If you want to download hackbot, its here
Hackbot(1)                      Scanning tools                      Hackbot(1)



NAME
       Hackbot - Host exploration and bannergrab tool

SYNOPSIS
       hackbot.pl   [-VOAitfmsSdprX][-P   ][-a  ][-z  ][-l
       ][-g  ][-w  avociun]]  [|-F  ]



DESCRIPTION
       Hackbot is a vulnerability and bannergrabber meant as auditory tool for
       remote and local hosts. Hackbot  requires  PERL  (http://www.perl.org),
       IO::Socket,  Net::hostent  and  Getopt::Std which should come with your
       default PERL installation.

PLATFORMS
       Hackbot should work on all UNIX platforms which have perl and the  
       necessary modules installed.

OPTIONS
       -O log to output file.

       -A All scan types.

       -i Ident scan.

       -t Telnet fingerprinting.

       -f FTP scan, grabs FTP banner and checks for
          anonymous user login.

       -m MTA scan, grabs MTA banner and checks for
          open relay, EXPN and VRFY.

       -s SSH scan, grabs SSH banner.

       -S Check target host with spamcop's database

       -d DNS scan, grabs DNS version.

       -p POP3 scan

       -r Registrar whois lookup.

       -V Print Version and exit.

       -P Scan via proxy.

       -l loglevel sets loglevel state, see LOGLEVEL OPTIONS below.

       -g    Google search, uses strings from google.db when -A option
       is used. See GOOGLE SEARCH section below

       -w Webserver scan, various options, see the
          WEBSERVER OPTIONS section below.

       -z NN Set time in seconds between each CGI poll (to be  less  
          conspicuous).

       -a NN Set alternative webserver port.

       -X X allow check.

       -F Reads hostnames or IP's from a targetfile.

WEBSERVER OPTIONS
       Webserver scan types:

       a All webserver scans.

       v Check webserver version.

       o Check for webserver PUBLIC and ALLOW options.

       c CGI scan, scans for commonly exploitable CGI's

       i IDA, IDC, IDQ scan, scans for path revealing NT
          problems.

       u Unicode scan, scans for NT unicode vulnerabilities.

       n Nimda scan, scans for eml files in website html
          source, works best combined with -c option.

LOGLEVEL OPTIONS
       Loglevel states:
                       c  critical (default)
                       v  verbose
                       d  debug

       c Critical only list information that is important.

       v Verbose same as above + might-be-interesting-stuff.

       d  Show  all  normal scaninfo, All socketinfo, data and show additional
       'tagpoints'.


SCANOUTPUT
       The output of the scan is placed in output.host files or, when  the  -O
       option is used, it is placed in the given output file

SCANOUTPUT EXAMPLE
       output.127.0.0.1
       output.www.yourdomain.name
       or,  when  -O  option  is defined, output is placed in the given output
       file.


EXAMPLES
       FTP, MTA and webserver options, CGI and IDA scan

       $ hackbot.pl -f -m -w oci localhost

       ALL scans

       $ hackbot.pl -A localhost

       or from a file

       $ hackbot.pl -A -F file_with_hosts

       or with ranges and output file

       $ hackbot.pl -O logfile -A 192.168.1.1 192.168.1.255

       or with CIDR's

       $ hackbot.pl -A 192.168.1.0/24

       NOTE: CIDR masks < /24 are currently unsupported.

       or with a higher loglevel

       $ hackbot -A -lv 192.168.1.1






GOOGLE SEARCH
       The google search is issued  with  the  -A  option  by  default  (using
       google.db), a manual scan can be done this way:

       hackbot.pl -g string host

       For instance:

       $ hackbot.pl -g britney www.geocities.com

       Hackbot will search for URL's containing 'britney' on 
       http://www.geocities.com via google. As example.

       It could find this for instance:

       http://www.geocities.com/britney.html
       http://www.geocities.com/~user/britney.txt


       etc..

AUTHORS
       Marco van Berkum - marco@stream-portal.org
       Kristian Vlaardingerbroek 
       Pepijn Vissers
       Martijn Mooijman
       Herman Poortermans
       Guido Barosio

BUGS
       All bugs can be reported to marco@stream-portal.org, before  reporting  
       bugs please refer to the KNOWN_BUGS file first.

LICENSE
       Hackbot is licensed under the LGPL License, see LICENSE for more 
       information.

DISCLAIMER
       The author of this program _CANNOT_ be held responsible for any illegal
       scanning  activities  initiated  by a user or unauthorised party.  This
       program is meant as tool to determine your OWN network  security.   Any
       unauthorised  probes  with  this  program  should  be reported to local
       authorities and/or to the attacker himself. Complaints  to  my  address
       regarding  the unauthorised use of this program will be moved unseen to
       /dev/null.



Marco van Berkum                     2.21                           Hackbot(1)