- Advanced Penetration Testing for Highly-Secured Environments:The Ultimate Security Guide
- Lee Allen
- 202字
- 2021-08-06 19:58:31
Chapter 2. Advanced Reconnaissance Techniques
Actionable information is the key to success when performing a penetration test. The amount of public data that is available on the Internet is staggering, and sifting through it all to find useful information can be a daunting task. Luckily, there are tools available that assist in gathering and sorting through this wealth of knowledge. In this chapter, we will be reviewing some of these tools and will focus on how to use the information to ensure your penetration tests are efficient, focused, and effective. Key topics covered include:
- What is reconnaissance and why do we need it
- Reconnaissance types
- Using DNS to quickly identify potential targets
- Using search engines data
- Using metadata to your advantage
Note
Throughout this chapter we will use the domain names
example.com, example.org, andexample.netwhich are owned and maintained by IANA. DO NOT USE THESE FOR PRACTICE PURPOSES.These domain names are used as a representation of a domain that you own and/or have permission to use as a target for your testing. Ideally, you would set up a segmented and controlled virtual lab with DNS servers that allows you to test all of these commands at your leisure.
- 社交網絡對齊
- Mastering Node.js(Second Edition)
- C++黑客編程揭秘與防范
- Django 2 by Example
- 物聯網+BIM:構建數字孿生的未來
- C/C++串口通信:典型應用實例編程實踐
- Windows Server 2012 Hyper-V虛擬化管理實踐
- 4G小基站系統原理、組網及應用
- Learning Windows 8 Game Development
- 網絡利他行為研究:積極心理學的視角
- 人人都該都懂的互聯網思維
- 物聯網工程概論
- Learning Node.js Development
- 中國互聯網發展報告2021
- Laravel Application Development Cookbook