Video Description

In this lab, Subject Matter Expert Dean Pompilio demonstrates Cewl, a simple and useful tool for generating word lists for use with a password cracking tool. Cewl is built into Kali, or it can be downloaded and run from other UNIX systems. SME Pompilio gives an example of how a Social Engineer would use Cewl's spidering process to generate a word list for password cracking and how the output is evaluated. You will learn to

  • run the program

  • examine the Help function

  • understand the various options in Cewl

  • specify the spidering depth

  • specify word length

  • specify an output file

  • specify a proxy

  • determine whether to use the offsite parameter

  • search for metadata and save to a file

  • search for email addresses and save to a file

The large number of words (13,325) and email addresses (82) discovered by the process run in the example can be used with a password cracking tool, and those results will be used in your Social Engineering audit.

Course Modules