How to know someone's IP Address
In many cases, it's desired to know the IP address of someone in the reconnaissance phase. The first question to ask is what information do I have about this person. In most cases it's possible that you have the email or IM of the target. First let's discuss the methods:
Method #0x01
if you have a web server hosted someplace where you can see its logs then it's very easy to send someone a URL of an image or any webpage hosted on your web server (http://123.123.123.123/veryfunnyimage.jpg) whenever this page is visited the web server keeps a log of who visited that page (IP address, time, browser, OS ... and lots of more info) where you can check later to collect IP addresses. if
Method #0x02
sometimes people get freaked out from addresses that have ip addresses in the URL so having your webserver with a domain name would really help the person you sent the URL to press on the link (www.mywebsite.com/veryfunnyimage.jpg)
Method #0x03
Some paranoid people don't open links to unknown sites. so here comes the cool trick. you can embed the image in a post of yours in a known site that allows HTML tags with image sources like < img src = (your image URL). in this case the URL you are going to send to the person is a link to a known website but the website contains another link to your web server. And whenever someone views this page on the known website, the "img src" link is invoked and voila!, you have a log entry on your webserver.
Method #0x04
Some Ultra paranoid people don't open links at all!! for these people I use my old trick. I send an email to the target that looks important to him (depending on the target actually and what's important to him). This email is in HTML format and contains a tag that links to an image on my webserver (probably a white image not to attract attention). Now upon merely opening the email, my webserver is invoked and a log entry is saved about the persons current IP address.
Note that this method only works if the email client allows images to be displayed (gmail disable that by default)
Method #0x05
A more faster approach is IM. If you have the IM of the target, then it's possible that you try to send him a file (not malicious, a picture or smthng). upon sending the file, a direct connection is established between you and the target. with a simple connection monitoring application (e.g.netstat on windows), you can know the Ip address.
Method #0x06
Some paranoid people don't accept files! so another trick in case of MSN is background sharing. the default for MSN is to accept backgrounds shared by others. Actually background sharing performs file sending if the background is not one of the default backgrounds. So the trick is to set your background for the IM to a cool pic from your computer and share it. if the default setting was not altered on your target's IM, then he will automatically accept it right away and a connection is opened. here comes again the connection monitoring app where you can identify the new connection and extract the IP add of the target.
Well those are one's that I used .. do you have any other methods ?? sometimes I only have the username on a forum or website. Any clues?
UPDATE:
Method #0x07
In MSN messenger, if u don't have the display picture of the person you're talking to, the messenger will try to download it by default. this cause the the MSN to open a direct connection. Using a sniffing tool like wireshark will allow you to know the IP of the remote person.So basically if you don't have his display picture and you opened the chat window you'll get your log entry. You can either convince the target to change his/her display picture or you can remove the your local directory that caches the display pictures for all contacts (located in application data folder for the msn) to force the messenger to redownload the picture. [ NOTE: thanks to rvdh for the great tip :) and thanks to Borry for letting me taking him as a test subject :D ]
Method #0x01
if you have a web server hosted someplace where you can see its logs then it's very easy to send someone a URL of an image or any webpage hosted on your web server (http://123.123.123.123/veryfunnyimage.jpg) whenever this page is visited the web server keeps a log of who visited that page (IP address, time, browser, OS ... and lots of more info) where you can check later to collect IP addresses. if
Method #0x02
sometimes people get freaked out from addresses that have ip addresses in the URL so having your webserver with a domain name would really help the person you sent the URL to press on the link (www.mywebsite.com/veryfunnyimage.jpg)
Method #0x03
Some paranoid people don't open links to unknown sites. so here comes the cool trick. you can embed the image in a post of yours in a known site that allows HTML tags with image sources like < img src = (your image URL). in this case the URL you are going to send to the person is a link to a known website but the website contains another link to your web server. And whenever someone views this page on the known website, the "img src" link is invoked and voila!, you have a log entry on your webserver.
Method #0x04
Some Ultra paranoid people don't open links at all!! for these people I use my old trick. I send an email to the target that looks important to him (depending on the target actually and what's important to him). This email is in HTML format and contains a tag that links to an image on my webserver (probably a white image not to attract attention). Now upon merely opening the email, my webserver is invoked and a log entry is saved about the persons current IP address.
Note that this method only works if the email client allows images to be displayed (gmail disable that by default)
Method #0x05
A more faster approach is IM. If you have the IM of the target, then it's possible that you try to send him a file (not malicious, a picture or smthng). upon sending the file, a direct connection is established between you and the target. with a simple connection monitoring application (e.g.netstat on windows), you can know the Ip address.
Method #0x06
Some paranoid people don't accept files! so another trick in case of MSN is background sharing. the default for MSN is to accept backgrounds shared by others. Actually background sharing performs file sending if the background is not one of the default backgrounds. So the trick is to set your background for the IM to a cool pic from your computer and share it. if the default setting was not altered on your target's IM, then he will automatically accept it right away and a connection is opened. here comes again the connection monitoring app where you can identify the new connection and extract the IP add of the target.
Well those are one's that I used .. do you have any other methods ?? sometimes I only have the username on a forum or website. Any clues?
UPDATE:
Method #0x07
In MSN messenger, if u don't have the display picture of the person you're talking to, the messenger will try to download it by default. this cause the the MSN to open a direct connection. Using a sniffing tool like wireshark will allow you to know the IP of the remote person.So basically if you don't have his display picture and you opened the chat window you'll get your log entry. You can either convince the target to change his/her display picture or you can remove the your local directory that caches the display pictures for all contacts (located in application data folder for the msn) to force the messenger to redownload the picture. [ NOTE: thanks to rvdh for the great tip :) and thanks to Borry for letting me taking him as a test subject :D ]
Add a Comment
-
Comment by boyz27 on December 23, 2008 at 5:02am - i'm using the google.com for finding the IP of target hehe:)
-
Comment by j0rd4n14n.r1z on December 19, 2008 at 5:06am - intersting method ..
-
Comment by Islaw*Palitaw on December 19, 2008 at 1:22am
- If you have the email of the person, You can also try researching for his recent post in yahoo groups. Inside the yahoo groups, you can always query the email header of the person who posted containing the IP address of the source who posted the email. In this way, you dont have to get in touch with the person in real-time.
-
Comment by Alcides on December 16, 2008 at 10:02am -
Worth mentioning here: GAIM [now pidgin ]can obtain private IP address of a buddy with whom chat session is active. I have tried this many a times with my buddies on Yahoo!
To do this I don't need to share backgrounds, or do any kind of file transfer etc.
-
Comment by 3mpty on December 12, 2008 at 1:44pm - also with Flash
-
Comment by Bitmuncher on December 12, 2008 at 5:02am - @root: This only works if the target has Javascript, Active-X or Java enabled.
-
Comment by root on December 12, 2008 at 4:42am - Just to add, if you do use your own web page at your web server/free host you can log the real ip even if it's behind proxy...
-
Comment by Der Jäger on December 12, 2008 at 3:02am - I have nothing to offer here @ this time. But I do want to comment on this topic."Great post & share".
-
Comment by Jeffrey D. Pound, Sr. on December 11, 2008 at 9:50pm -
What about the social engineering way? --- Call and ask. One script,
Hi, this is Jeff from the help desk, we have a problem with either your machine or Dave's can you tell me your IP, oh, go to start and click accessories, then command prompt, then type ifconfig /all and read it to me.
I've see this work way too often.
-jeff
-
Comment by Terminator on December 11, 2008 at 8:57am - Yse, Bitmuncher, but the problem is that most people use web mail these days.. and web mail usually removes the originating ip from the header. or puts the ip of the web server on which the web mail is hosted.
© 2009 Created by pdp on Ning. Create a Ning Network!
You need to be a member of House of Hackers to add comments!
Join this Ning Network