< All Penetration Testing and Ethical Hacking (Archive) Notes

rhageboeck | Penetration Testing and Ethical Hacking | Module 02 - Footprinting

By: rhageboeck | Related Course: Penetration Testing and Ethical Hacking (Archive) | Published: April 1, 2018 | Modified: April 1, 2018
Join Cybrary

NotepadFootprinting (whiteboard)

All of the information collected gives broader view of the target and yields insight to what can be done to exploit a system.

Internal Actions (from within target)

  1. Internal DNS
  2. Private Websites
  3. Dumpster Diving
  4. Shoulder Surfing
  5. Eavesdropping

External Action (actions over internet)

  1. Phone
  2. Network
  3. Website
  4. Email Header

Do Google, WHOIS, DNS, & social media searches to gather information.

  • Look at IP Blocks, Net Blocks, WEB SVR Content, Source Code, Website Mirroring, OS Detecting (C/S)

Use all search engines (not just google) to look for information

  • URL Analysis (look for disclosures in address)
  • Google Earth? (strange idea)
  • People Sites
  • Financial Information (larger companies)
  • Job Sites (look for hints about their setups)
  • Alert Websites
  • Look for archived webpages
  • Web Monitoring (OS versions)

Other Techniques

  • Patent/Trademark
  • Customers
  • Press Releases
  • Google Hacking

NotepadIntroduction to Footprinting

Foot-printing is documenting information such as websites, directories, emails, systems (ip addresses & domain names).

What types of exploits can use this information.

Use public registration (DNS & email)

< All Penetration Testing and Ethical Hacking (Archive) Notes
Join Cybrary

Our Revolution

We believe Cyber Security training should accessible for everyone, everywhere. Everyone deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is the world's largest community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

We recommend always using caution when following any link

Are you sure you want to continue?