Information gathering is one of the most important stages of the attack. This is where we gather basic information about our target in order to be able to launch our attack later on.
Google hacking
Searching within a domain
The site: operator restricts the results to website in a given domain.
site: microsoft.com
Lets try the file operator
filetype:pdf site:microsoft.com
Whois reconnaissance
Who is a name for a TCP service, a tool and a database. Whois databases contain nameservers, registrar, and in some cases full contact information about the domain name.
whois checkpoint.com
Whois can also peform reverse lookups, rather than inputting a domain name we can input an IP address. The who is result usually include the whole network range which belongs to the organization/
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment