This software is an open source script for extracting valuable information from anonymous web databases accessible via Lotus Domino. It simplifies the data mining process and makes it easy to extract useful insights from these databases.
One of DominoDig's most useful features is the ability to produce an HTML report that lists all the unique .nsf databases it was able to access, alongside both IP addresses and email addresses. This feature alone can save countless hours that would have been spent on manual auditing.
The creation of DominoDig was born out of frustration with the Open Source Vulnerability Scanning Tool NESSUS. Although there is an NASL script available that checks for the presence of various default Notes databases, it leaves much to the user's imagination to figure out which ones have been accessed. DominoDig solves this issue by providing clear and concise reports of exactly which databases have been accessed.
The program is especially useful as part of an Open Source pen-test as it automates much of the auditing involved in digging through these anonymously accessible default databases. Instead of merely checking for the presence of anonymously accessible default databases, DominoDig goes even further by parsing the contents of each page it retrieves, looking for any mention of other notes databases on the system.
In summary, DominoDig is an essential tool for anyone involved in auditing Lotus Domino web servers. It has a vast range of features that help to make the auditing process both streamlined and effortless. So if you're looking to save time and effort in your auditing work, look no further than DominoDig.
Version 0.70 Alpha: N/A