Presentation is loading. Please wait.

Presentation is loading. Please wait.

Module 3 – Information Gathering  Phase II  Controls Assessment  Scheduling ○ Information Gathering ○ Network Mapping ○ Vulnerability Identification.

Published byRosaline York Modified over 8 years ago

Similar presentations

Presentation on theme: "Module 3 – Information Gathering  Phase II  Controls Assessment  Scheduling ○ Information Gathering ○ Network Mapping ○ Vulnerability Identification."— Presentation transcript:

1 Module 3 – Information Gathering  Phase II  Controls Assessment  Scheduling ○ Information Gathering ○ Network Mapping ○ Vulnerability Identification ○ Penetration ○ Gaining Access & Privilege Escalation ○ Enumerating Further ○ Compromise Remote Users/Sites ○ Maintaining Access ○ Cover the Tracks Heorot.net

2 Information Gathering  Locate the target Web presence  Examine the target using search engines  Search Web groups  Search employee personal Web sites  Search Security & Exchange Commission and finance sites  Search uptime statistics sites  Search system/network survey sites  Search on P2P networks  Search on Internet Relay Chat (IRC)  Search job databases  Search newsgroups (NNTP)  Gain information from domain registrar  Check for reverse DNS lookup presence  Check more DNS information  Check Spam database lookup  Check to change WHOIS information Heorot.net

3 Information Gathering IMPORTANT!!  This phase does not involve “touching” the target  Information gathered may not be “Public Domain”  Tools: Firefox Dogpile.com Alexa.org Archive.org Document, document, document… Screenshots, screenshots, screenshots… Heorot.net

4 Information Gathering What to Document…  Website Address  Web Server Type  Server Locations  Dates Listed  Date Last Modified  Web Links Internal  Web Links External  Web Server Directory Tree  Technologies Used  Encryption standards  Web-Enabled Languages  Form Fields  Form Variables  Method of Form Postings  Keywords Used  Company contactability  Meta Tags  Comments Noted  e-commerce Capabilities  Services Offered on Net  Products Offered on Net  Features Heorot.net

5 Information Gathering  Locate the target Web presence Cool tool called “nmap” Heorot.net

6 Information Gathering  Examine the target using search engines Rank 53,545 / Linking In: 2,415 Heorot.net

7 Information Gathering  Examine the target using search engines Heorot.net

8 Information Gathering  Dates Listed / Modified Heorot.net

9 Information Gathering  Search Web groups Heorot.net

10 Information Gathering  Search newsgroups (NNTP) http://freenews.maxbaud.net Heorot.net

11 Information Gathering  Gain information from domain registrar  Check to change WHOIS information Heorot.net

12 Information Gathering  Check for reverse DNS lookup presence  Check more DNS information DNS Reverse DNS http://www.dnswatch.info Heorot.net

13 Information Gathering  Why care about Reverse DNS? Insecure.org seclists.org Heorot.net

14 Information Gathering  Check Spam database lookup http://www.dnsbl.info Heorot.net

15 Information Gathering  Search employee personal Web sites  Search Security & Exchange Commission and finance sites  Search uptime statistics sites  Search system/network survey sites  Search on P2P networks  Search on Internet Relay Chat (IRC)  Search job databases Heorot.net

16 Module 3 – Conclusion  Information Gathering  What to Document  Not “touching” the target  Information may not be “Public Domain” Heorot.net

Download ppt "Module 3 – Information Gathering  Phase II  Controls Assessment  Scheduling ○ Information Gathering ○ Network Mapping ○ Vulnerability Identification."

Similar presentations

Computer Technology Timpview High School. A collection of local, regional, national, and international computer networks that are linked together to exchange.

Computer Technology Timpview High School. A collection of local, regional, national, and international computer networks that are linked together to exchange.
MediTract Contract Management Software

MediTract Contract Management Software
This module will familiarize you with the following:  Overview of the Reconnaissance Phase  Footprinting: An Introduction  Information Gathering Methodology.

This module will familiarize you with the following:  Overview of the Reconnaissance Phase  Footprinting: An Introduction  Information Gathering Methodology.
Module 2 – PenTest Overview

Module 2 – PenTest Overview
Oct 7, 2006Presented By Leonard Doucette © 2006 Welcome to the “Erica Miller Spa School” at The Hills Health Ranch “E” Marketing and the Web.

Oct 7, 2006Presented By Leonard Doucette © 2006 Welcome to the “Erica Miller Spa School” at The Hills Health Ranch “E” Marketing and the Web.
Chapter 2 Gathering Target Information: Reconnaissance, Footprinting, and Social Engineering.

Chapter 2 Gathering Target Information: Reconnaissance, Footprinting, and Social Engineering.
 Single sign-on o Centralized and federated passport o Federated Liberty Alliance and Shibboleth  Authorization o Who can access which resource o ACM.

 Single sign-on o Centralized and federated passport o Federated Liberty Alliance and Shibboleth  Authorization o Who can access which resource o ACM.
Microsoft Office Live Create Your Own Website Basics Behind Office Live Allows users to create a professional presence without the hefty expenses of.

Microsoft Office Live Create Your Own Website Basics Behind Office Live Allows users to create a professional presence without the hefty expenses of.
Introduction Web Development II 5 th February. Introduction to Web Development Search engines Discussion boards, bulletin boards, other online collaboration.

Introduction Web Development II 5 th February. Introduction to Web Development Search engines Discussion boards, bulletin boards, other online collaboration.
Reconnaissance Steps. EC-Council Gathering information from Open Sources  Owner of IP-address range  Address Range  Domain Names  Computing Platforms.

Reconnaissance Steps. EC-Council Gathering information from Open Sources  Owner of IP-address range  Address Range  Domain Names  Computing Platforms.
Lesson 19 Internet Basics.

Lesson 19 Internet Basics.
ABQWEB™, A division of L&S Marketing www.ABQweb.com Web Site Hosting, Design and Maintenance Professional Sites that Look Good, Load Fast and Work Well.

ABQWEB™, A division of L&S Marketing Web Site Hosting, Design and Maintenance Professional Sites that Look Good, Load Fast and Work Well.
Internet Relay Chat Chandrea Dungy Derek Garrett #29.

Internet Relay Chat Chandrea Dungy Derek Garrett #29.
_______________________________________________________________________________________________________________ E-Commerce: Fundamentals and Applications1.

_______________________________________________________________________________________________________________ E-Commerce: Fundamentals and Applications1.
“If you build it, they will come.”. Virtual Business  There is much more that goes into a virtual business than just building the web site.  You will.

“If you build it, they will come.”. Virtual Business  There is much more that goes into a virtual business than just building the web site.  You will.
1 Internet Search Tools Adapted from Kathy Schrock’s PowerPoint entitled “Successful Web Search Strategies” Kathy Schrock’s complete PowerPoint available.

1 Internet Search Tools Adapted from Kathy Schrock’s PowerPoint entitled “Successful Web Search Strategies” Kathy Schrock’s complete PowerPoint available.
CHAPTER THE INTERNET, THE WEB, AND ELECTRONIC COMMERCE 22.

CHAPTER THE INTERNET, THE WEB, AND ELECTRONIC COMMERCE 22.
Increasing Website ROI through SEO and Analytics Dan Belhassen greatBIGnews.com Modern Earth Inc.

Increasing Website ROI through SEO and Analytics Dan Belhassen greatBIGnews.com Modern Earth Inc.
Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.

Penetration Testing Edmund Whitehead Rayce West. Introduction - Definition of Penetration Testing - Who needs Penetration Testing? - Penetration Testing.
Section 13.1 Add a hit counter to a Web page Identify the limitations of hit counters Describe the information gathered by tracking systems Create a guest.

Section 13.1 Add a hit counter to a Web page Identify the limitations of hit counters Describe the information gathered by tracking systems Create a guest.

Similar presentations

Ads by Google