EvilZone

Found this awesome article on the webs:

http://drusepth.net/how-to-hack-hotmail/

Wonder if I can post it to the tutorials board? xD

Very nice indeed! I had not considered using that solution, I try to avoid using system commands from python as much as I can, but I admit it might be a good solution here. Nice work 

That sure is interesting, but how are you searching the deep web with it? Don't you need the tor browser to access the deep web, or am I mistaking?

The deep web is not defined as tor sites, I'm not actually sure it is defined as anything at all. And I don't know if that term is correct at all when referring to my script. But the idiot who wrote the script that gave me the idea called it "deep web".

To everybody who wants to use this script: Be careful there a lots of perverts out there in the www, and I personally think these people want to hide their websites

I actually didn't think of that. Sorry guys, he's right, take caution! Maybe I should add a functionality for excluding sites with specific keywords as well, that way you also get rid of all the site that only has "It's working!".
[qoute]If this search's for IP and sees if it has a domain name, won't that rule out a lot of possible websites? A server can have tons of websites with domain names that still won't show up in a google search, isn't that right? Or do all registered Domain Names show up?
It's not perfect, all sites that is hidden on a server that already has a domain will be discarded. If anyone has a good idea to solve this, please, let me know.

I came across this article on hackthissite: https://www.hackthissite.org/forums/viewtopic.php?f=104&t=10334&sid=d41da93c989495cdde82020036725157
In the article some guy claims to have written a python script to scan the "deep web". All it does is constantly generate  random IPs and attempting connections on port 80. I figured I could use this as a base for a script that actually digs up "hidden" websites.
[gist]anonymous/993898b8121a597f6ca0[/gist]
My script generates random IPs and does a reverse DNS lookup on them. If the lookup FAILS, it attempts connection on port 80. If THIS is a success, then it most likely exists a website on this IP that doesn't have a domain (it's sort of "hidden").
Now, I didn't think that the script would have so much when I started out, and the result is VERY messy code. But it works  !
Includes functionality for doing one single IP instead of constantly spamming them, logging the findings to a file, searching for keywords on the sites that turns up, and different degrees of verbosity.


Finally, here's some things that I need help with:
I use the socket.setdefaulttimeout() function to have one second timeout at the connection (for preformance reasons). BUT, it turns out that socket.gethostbyaddr() doesn't care what the timeout is. It only works for socket.connect(). HOW can I set timeout for gethostbyaddr??
Also, I am not satisfied by randomly generating IPs to scan. My goal is to fill a list with EVERY IP address from 1.1.1.2 to 254.255.255.254, then shuffle the list to randomize the scanning order. But I haven't found a smart way to fill the list yet.


Any and all improvements and suggestions are welcomed