informationgathering
Post on 13-May-2015
245 Views
Preview:
DESCRIPTION
TRANSCRIPT
Cyber Ethics – Hacking
Information Gathering
By
Noah Franklin J
•Information Gathering-Definition
•Initial Info gathering of websites.
•IP range Lookup
•DNS information gathering.
•Web Hosting info gathering.
•Understanding hosting control Panels.
•Subdomains.
•Whois information.
Session Flow
Copy Rights to Noah Franklin J
•Info Gathering using blogs & forums.
•Info Gathering using search Engine
•Info Gathering using Meta tags & Words.
•People Search.
•Info gathering using job, matrimonial websites.
• Info gathering using face book , twitter , Google+
and other social networking site
Session Flow
Copy Rights to Noah Franklin J
Whois is query to database to get following
information.
1.Owner of website.
2.Email id used to register domain.
3.Domain registrar.
4.Domain name server information.
5.Related websites.
Whois
Copy Rights to Noah Franklin J
Whois.net has official database of all domains.
Whois
Copy Rights to Noah Franklin J
Whois
Copy Rights to Noah Franklin J
•Nslookup is program to query domain name servers
of websites.
•MX records also reveals IP address of mail server.
NSlookup
Copy Rights to Noah Franklin J
•Reverse IP will give number of websites hosted on
same server.
•If one website is vulnerable on the server then
hacker can easily root the server.
•domainbyip.com
Reverse IP Mapping
Copy Rights to Noah Franklin J
DNSStuff.com
DNS Information
Copy Rights to Noah Franklin J
•Trace Route
Trace Route
Copy Rights to Noah Franklin J
•Path Analyzer pro
•Find out IP addresses
•Troubleshoot Network availability & Performance.
•Locate firewalls & Routers which impacts
connection.
•Find out MX records.
•Trace actual applications.
•Generate & Print Reports.
•Also able to perform continuous checks.
Trace Route
Copy Rights to Noah Franklin J
•Search engines are efficient mediums to get specific
results according to your requirements.
•Google & yahoo search engine gives best results out
of all.
Info. Gathering using Search Engine
Copy Rights to Noah Franklin J
• This type of search engines retrieves results from
different search engine & make relation or connections
between those results.
Info. Gathering using Search Engine
Copy Rights to Noah Franklin J
•Maltego is an open source intelligence and forensics application.
•It allows for the mining and gathering of information as well as the representation of this information in a meaningful way.
•Coupled with its graphing libraries, Maltego, allows you to identify key relationships between information and identify previously unknown relationships between them.
Info. Gathering using Search Engine
Copy Rights to Noah Franklin J
NSlookup
Copy Rights to Noah Franklin J
Maltego
Copy Rights to Noah Franklin J
•Almost80%internetusersuseblogs/forums for knowledge sharing purpose.
•Information gathering from specific blog will also helpful in investigations.
Information gathering using forum/blogs
Copy Rights to Noah Franklin J
Information gathering using Jobs site
Copy Rights to Noah Franklin J
• Orkut.com
• Facebook.com
• Twitter.com
• Linkedin.com
Information gathering using SN Website
Copy Rights to Noah Franklin J
People Search
Copy Rights to Noah Franklin J
Information gathering using Web Archive
Copy Rights to Noah Franklin J
•Archive.commaintainsarchiveofpagesofwebsite
top related