dumpzilla

Information Security

Dumpzila adalah tools untuk forensik browser

[1] Download dumpzilla di website resminya ada di http://www.dumpzilla.org/

[2] Setelah source dumpzilla berhasil di download, lalu jalankan script python

python dumpzilla.py

Version: 15/03/2013

Usage: python dumpzilla.py browser_profile_directory [Options]

Options:

--All (Shows everything but the DOM data. Doesn't extract thumbnails or HTML 5 offline)
 --Cookies [-showdom -domain <string> -name <string> -hostcookie <string> -access <date> -create <date> -secure <0/1> -httponly <0/1> -range_last -range_create <start> <end>]
 --Permissions [-host <string>]
 --Downloads [-range <start> <end>]
 --Forms [-value <string> -range_forms <start> <end>]
 --History [-url <string> -title <string> -date <date> -range_history <start> <end> -frequency]
 --Bookmarks [-range_bookmarks <start> <end>]
 --Cacheoffline [-range_cacheoff <start> <end> -extract <directory>]
 --Thumbnails [-extract_thumb <directory>]
 --Range <start date> <end date>
 --Addons
 --Passwords (Decode only in Unix)
 --Certoverride
 --Session
 --Watch [-text <string>] (Shows in daemon mode the URLs and text form in real time. -text' Option allow filter, support all grep Wildcards. Exit: Ctrl + C. only Unix).

Wildcards: '%' Any string of any length (Including zero length)
 '_' Single character
 '\' Escape character

Date syntax: YYYY-MM-DD HH:MM:SS

Win profile: 'C:\Documents and Settings\xx\Application Data\Mozilla\Firefox\Profiles\xxxx.default'
Unix profile: '/home/xx/.mozilla/seamonkey/xxxx.default/'

[3] Contoh untuk melihat history

$ python dumpzilla.py /home/space/.mozilla/firefox/g8gha5kg.default/ --History

Last visit: 2017-08-25 16:32:51
Title: Add New Post ‹ — WordPress
URL: https://anditoyugowicaksono.wordpress.com/wp-admin/post-new.php
Frequency: 10

================================================================================================================
Total information
================================================================================================================

Total urls in History: 1861

Cheers – Andito Yugo Wicaksono

 

Leave a comment