88
◾
Ethical Hacking and Penetration Testing Guide
Usage
./smtp-user.enum.pl –M VRFY –u/pass.txt –t mailserver
The tool is very simple to use. All you need to do is find or create a good
username list and define
the path to it after the -u parameter and then provide the IP address of the mail server.
Detecting Load Balancers
Load balancers is a method used by organizations to distribute load upon other servers. This way,
applications work effectively and maintain the uptime, increasing their reliability. Load balancers
are generally classified into two categories:
1. Layer 4 load balancers, also
known as DNS load balancers
2. Layer 7 load balancers, also known as http load balancers
In
this section, we will learn methods to detect both layer 4 and layer 7 load balancers.
Generally, if a single host resolves to multiple IPs, then it’s probably using a load balancer. Let’s
use the host command to detect the IP addresses of Google.
For that, we would run the following query:
host www.google.com
It will resolve to multiple IPs. However, dig can provide much better results. You could use the
similar command for dig.