Footprintig

Footprinting

Information Gathering using groups forums and blogs.

Groups, forums, blogs and community can be a great source of sensitive information. Joining with a fake ID on this platform and reaching closest to target organization group

Is not abig deal for anyone. Any official and non-official can leak sensitive information. 

Footprinting (also known as reconnaissance) is the technique used for gathering information about computer systems and the entities they belong to. To get this information, a hacker might use various tools and technologies. This information is very useful to a hacker who is trying to crack a whole system.

When used in the computer security lexicon, "Footprinting" generally refers to one of the pre-attack phases; tasks performed before doing the actual attack. Some of the tools used for Footprinting are Sam Spade, nslookup, traceroute, Nmap and neotrace

• DNS queries
• Network enumeration
• Network queries
• Operating system identification
• Organizational queries
• Ping sweeps
• Point of contact queries
• Port Scanning
• Registrar queries (WHOIS queries)
• SNMP queries
• World Wide Web spidering

Software used for footprinting

Wireshark

Use of footprinting

It allows a hacker to gain information about the target system or network. This information can be used to carry out attacks on the system. That is the reason by which it may be named a Pre-Attack, since all the information is reviewed in order to get a complete and successful resolution of the attack. Footprinting is also used by ethical hackers and penetration testers to find security flaws and vulnerabilities within their own company's network before a malicious hacker does

Negative web search 

Negative web search will reveal some other websites when performed on the target website. Negative websites can act as resources for insight about the flaws of the target website

Crawling 

Crawling is the process of surfing the internet to get the required information about the target. The sites surfed can include the target's website, blogs and social networks. The information obtained by this method will be helpful in other methods

WHOIS

WHOIS is a web application used to get information about the target website, such as the administrator's e-mail address and details about the registration. WHOIS is a very large database and contains information of approximately all clearnet websites. It can be searched by domain name.