intTypePromotion=1
zunia.vn Tuyển sinh 2024 dành cho Gen-Z zunia.vn zunia.vn
ADSENSE
 » 
 » 

Lecture Penetration testing: Information gathering

Chia sẻ: _ _ | Ngày: | Loại File: PDF | Số trang:54

Thêm vào BST
Báo xấu
10
lượt xem 4
download
 
  Download Vui lòng tải xuống để xem tài liệu đầy đủ

Lecture "Penetration testing: Information gathering" provide students with knowledge about: Passive information gathering; Active information gathering; Information gathering;... Please refer to the detailed content of the lecture!

Chủ đề:

Bình luận(0) Đăng nhập để gửi bình luận!

Lưu

Nội dung Text: Lecture Penetration testing: Information gathering

  1. Information Gathering
  2. Contents  What is information gathering  Passive information gathering  Active information gathering
  3. 1. What is information gathering
  4. 1. What is information gathering  Information gathering is the first step in conducting a penetration test and is arguably the most important.  Information gathering is the process of collecting the information from different places about individual company, organization, Server, IP address or person.
  5. Information Gathering  Types of information gathering  Passive information gathering  Active information gathering
  6. 2. Passive Information Gathering
  7. 2. Passive Information Gathering  Passive information gathering focuses on collecting information archived on systems not located in our client’s network.  We try to gather as much information about our target network and systems without connecting to them directly.
  8. Information Searches  Locate the target Web presence  Gather search engine results regarding the target  Look for Web groups containing employee and/or company comments  Examine the personal Web sites of employees  Search archival sites for additional information  Look for job postings submitted by the target  Query the domain registrar  Domain name system (DNS) information
  9. Results • The penetration tester will have a wealth of information regarding the target without ever visiting the target’s network. • All passive information is gathered from third-party sources that have collected information about our target, or have legal requirements to retain this data.
  10. Tools  Netcraft (http://www.netcraft.com)
  11. Tools  Whois Lookups (root@kali:~# whois bulbsecurity.com)
  12. Tools  DNS Reconnaissance: Domain Name System(DNS) DNS is used to translate domain names into IP addresses and vice versa.  Record in DNS:  A: Address  CNAME: Canonical Name  MX: Mail Exchange
  13. CNAME cấu hình bí danh, nghĩa là 1 ip có thể gắn vào nhiều tên. 1 IP có thể gắn nhiều CNAME server.movie.edu. IN CNAME terminator.movie.edu. A Ánh xạ tên miền vào địa chỉ IP. Vd: terminator.movie.edu. IN A 192.168.11.100 MX Dùng để chuyển mail trên internet t3h.com IN MX 0 mail.t3h.com.
  14. DNS Reconnaissance #nslookup –type=ns example.com 8.8.8.8
  15. DNS Reconnaissance #!/bin/sh for HOSTNAME in `cat DomainNames.txt` do echo "Getting name servers for [$HOSTNAME]" nslookup -type=ns $HOSTNAME 8.8.8.8 done
  16. DNS Reconnaissance  Domain Information Groper (Dig) #dig example.com
  17. Dig  # dig +qr www.example.com any
  18. Dig Shortening the output #dig +nocmd +noall +answer example.com example.com. 44481 IN A 192.168.1.10
  19. Tool Maltego: Paterva’s Maltego is a data-mining tool designed to visualize open source intelligence gathering.  #maltego
ADSENSE

CÓ THỂ BẠN MUỐN DOWNLOAD

THÔNG TIN
TRỢ GIÚP
HỖ TRỢ KHÁCH HÀNG
Theo dõi chúng tôi

Chịu trách nhiệm nội dung:

Nguyễn Công Hà - Giám đốc Công ty TNHH TÀI LIỆU TRỰC TUYẾN VI NA

LIÊN HỆ

Địa chỉ: P402, 54A Nơ Trang Long, Phường 14, Q.Bình Thạnh, TP.HCM

Hotline: 093 303 0098

Email: support@tailieu.vn

Giấy phép Mạng Xã Hội số: 670/GP-BTTTT cấp ngày 30/11/2015 Copyright © 2022-2032 TaiLieu.VN. All rights reserved.

 

Đồng bộ tài khoản
3=>0