Footprinting and Reconnaissance Flashcards
(16 cards)
What is theHarvester?
theHarvester is a tool designed to be used in the early stages of a penetration test. It is used for open source intelligence gathering and helps to determine a company’s external threat landscape on the internet.
How do attackers use theHarvester
Attackers use this tool to perform enumeration on the LinkedIn social networking site to find employees of the target company along with their job titles.
What is Whois?
Whois Lookup is a query and response protocol used for querying databases.
What information can whois find for you?
Domain name details
Domain registrar
Contact details of the domain owner
Domain name servers
NetRange
When a domain has been created
Expiry records
REcords last updated
Domain stauts
IP address information
What is BuzzSumo?
BuzzSumo’s advanced social search engine finds the most shared content for a topi, author or domain. It shows the shared activity across all the major social networks including twitter, facebook, lindkedIn, google plus and pinterest.
What are 2 types of footprinting?
Passive and active
Explain Passive footprinting?
Passive footprinting involves gathering information about the target without direct interaction.
Explain Active footprinting?
Active footprinting involves gathering information about the target with direct interaction.
What is netcraft?
Netcraft provides Internet security services including anti-fraud and anti phishing services, application testing and PCI scanning.
What are common commands used for google dorks?
Go to slide 89
What information can be obtained from footprinting?
Organization infromation
Network Infromation
System Information
What is Shodan?
Shodan is a search engine that enables attackers to perfom footprinting at various levels. It is used to detect devices and networks with vulnerablities.
What is the tor browser and how does it work?
Tor browser is used to access the dark web, where it acts as a default VPN for the user and bounces the network IP address through several servers before interacting with the web.
What is netcraft?
Netcraft provides internet security services, including anti-fraud and anti phising services, application testing and PCI scanning. They also analyze the market share of the web servers, operating systems hosting providers and ssl certificate authorities and other parameters of the interntet.
What can you use IP2 Location for?
You can use it to analyze and trace email paths using the email header.
What is DNS footprinting?
DNS is the next step of the DNS footprinting. Attackers perform DNS footprinting to gather ifnormation about DNS SErvers, DNS Records and the types of servers used by the target organization.
