Skip to main content

Information Gathering

Why gather information?

  Avoids reinventing the wheel.

• Helps you to gain a deep understanding of the issue so that you can address it properly.
•You need all the tools possible to create the best program you can.
•It can help you ensure your program is culturally sensitive.
• Knowing what’s been done in a variety of other circumstances and understanding the issue from a number of different viewpoints may give you new insights and new ideas for your program.

Information Gathering Tools


Maltego
www.paterva.com
•Maltego is an intelligence and forensics application.
•It allows for the mining and gathering of information as well as the representation of this information in a meaningful way.


Google Hacking

Social Information Gathering: Maltego
•Maltego is a unique platform developed to deliver a clear threat picture to the environment that an organization owns and operates
• Maltego’s unique advantage is to demonstrate the complexity and severity of single points of failure as well as trust relationships that exist currently within the scope of your infrastructure.

Nmap (Network Scanner)

Nmap (Network Mapper) is a security scanner originally
written by Gordon Lyonused to discover hosts and services on
a computer network, thus creating a "map" of the network.


Nmap - Objective:

Find open TCP and/or UDP listeners on a single or range of TCP/IP Addresses
• Find out software versions
• Find out operating system type
• Learn what you have on your network

Most valuable TCP ‘ping’ ports:

80 (HTTP)
•25 (SMTP)
•22 (SSH)
•443 (HTTPS)
•21 (FTP)
•113 (AUTH)
•23 (TELNET)
•53 (DNS)
•554 (RTSP)
•1723 (PPTP)

Wegversity.com

•Visit wegversity.com for all resources at one place.

IP Tracing

If you can find out the IP address of an Internet user, you can get an idea
•what part of the country or world they're in by using the IP Lookup tool
•The ISP and organization's name
•The IP's host name
•The country it's in
•The region/state
•The city (a best guess)
•The latitude and longitude of the location (a best guess)
•The area code for that region
•Any known services running on that IP.
Link for reference: http://whatismyipaddress.com/ip-lookup

Email tracing

•This Trace Email tool can help you precisely to track down (or trace) where an email that you received came from. It works by examining the header (that is a part of the emails you receive) to find the IP address and thereby, trace its origin.
•Steps to trace an email:
1.Open the email you want to trace and find its header.
2.Copy the header, then paste it into the Trace Email Analyzer box.
3.Press the "Get Source" button and verify the location.
Link for reference:
http://whatismyipaddress.com/trace-email

Blacklist check

•With Blacklist check, you can see if your IP address is listed on any anti-spam database.
•If you are involved in spamming or other unwanted online behavior, your IP address could get blacklisted and blocked.
•It will get flagged and land on one or more of these databases.
•You'll be able to see that here at any time by running a new blacklist check:
http://whatismyipaddress.com/blacklist-check

Speed tests

•Speed test tells us about the strength of your internet connection, upload and download speeds.
•Link for reference: http://www.speedtest.net
Email Verification
•Verify your email address here: http://ipaddress.com/verify-email-address/

Keyword and Ranking:

This is a useful tool that can help you analyze any website.
It provides you with information such as:
•Website Load Time
•How to optimize your website?
•Website SEO Score
•Website Daily Page-views
•Website Daily Visitors
•Website Daily Revenue
•Website Worth
•Website Server Location
Link for reference: http://www.statscrop.com


Comments

Post a Comment

Popular posts from this blog

networks nd networking 1

Types Of Network •LAN - Local Area Network is in a small geographical area, such as a college or office building. •WAN - Wide Area Network Combination of multiple LANs. •WLAN - Wireless Local Area Network Links two or more devices using some wireless distribution method and usually providing a connection through an access point to the wider internet. Local Area Network (LAN) •A LAN connects network devices within a limited geographical area such as office buildings or schools. •The data transfer is managed by a transport protocol such as TCP/IP. •The transmission of data is performed by the access method (Ethernet, Token Ring, etc.). Wide Area Network (WAN) •A WAN covers a wide geographic area, carrying data over long distances, such as a country •WANs can be formed by different LANs •The connection between different LANs may not be permanent •WANs are sophisticated networks, but transmission speeds have generally been slower than those commonly achieved on LANs WLAN (Wireles
Post a Comment
Read more

MAN-IN-THE-MIDDLE ATTACK (MITM ATTACK)

What is Man-in-the-middle (MITM) attack? A man in the middle attack is one in which the attacker intercepts messages in a public key exchange and then retransmits them, substituting his own public key for the requested one, so that the two original parties still appear to be communicating with each other. The attack gets its name from the ball game where two people try to throw a ball directly to each other while one person in between them attempts to catch it. In a man in the middle attack, the intruder uses a program that appears to be the server to the client and appears to be the client to the server. The attack may be used simply to gain access to the message, or enable the attacker to modify the message before retransmitting it. Man in the middle attacks is sometimes known as fire brigade attacks. The term derives from the bucket brigade method of putting out a fire by handing buckets of water from one person to another between a water source and the fire. What is BackTrack
Post a Comment
Read more

NMAP and ZenMAP

NMAP and ZenMAP are useful tools for the scanning phase of Ethical Hacking in Kali Linux. NMAP and ZenMAP are practically the same tool, however NMAP uses command line while ZenMAP has a GUI. NMAP is a free utility tool for network discovery and security auditing. Many systems and network administrators also find it useful for tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. NMAP uses raw IP packets in novel ways to determine which hosts are available on the network, what services (application name and version) those hosts are offering, which operating systems (and OS versions) they are running, what type of packet filters/firewalls are in use, etc. Now, let’s go step by step and learn how to use NMAP and ZenMAP. Step 1 − To open, go to Applications → 01-Information Gathering → nmap or zenmap. Step 2 − The next step is to detect the OS type/version of the target host. Based on the help indicated by NMAP, the parameter of
Post a Comment
Read more