Book Image

Reconnaissance for Ethical Hackers

By : Glen D. Singh
5 (1)
Book Image

Reconnaissance for Ethical Hackers

5 (1)
By: Glen D. Singh

Overview of this book

This book explores reconnaissance techniques – the first step in discovering security vulnerabilities and exposed network infrastructure. It aids ethical hackers in understanding adversaries’ methods of identifying and mapping attack surfaces, such as network entry points, which enables them to exploit the target and steal confidential information. Reconnaissance for Ethical Hackers helps you get a comprehensive understanding of how threat actors are able to successfully leverage the information collected during the reconnaissance phase to scan and enumerate the network, collect information, and pose various security threats. This book helps you stay one step ahead in knowing how adversaries use tactics, techniques, and procedures (TTPs) to successfully gain information about their targets, while you develop a solid foundation on information gathering strategies as a cybersecurity professional. The concluding chapters will assist you in developing the skills and techniques used by real adversaries to identify vulnerable points of entry into an organization and mitigate reconnaissance-based attacks. By the end of this book, you’ll have gained a solid understanding of reconnaissance, as well as learned how to secure yourself and your organization without causing significant disruption.
Table of Contents (15 chapters)
1
Part 1: Reconnaissance and Footprinting
8
Part 2: Scanning and Enumeration

Domain and DNS Intelligence

As the internet continues to grow, there’s more access to information. Open Source Intelligence (OSINT) can be collected from any publicly available sources, such as the internet. Hackers collect OSINT about their target to help improve the Tactics, Techniques, and Procedures (TTPs) for their cyber-attack and operations. Hence, it’s important for cybersecurity professionals such as ethical hackers and penetration testers to have a solid understanding of how an adversary can collect and leverage OSINT, with the intention of the ethical hacker to use the same TTPs to help reduce the risk of a cyber-attack or threat and improve the cyber defenses of their organization.

Throughout the course of this chapter, you will learn about and gain practical skills commonly used by ethical hackers and penetration testers to gather publicly available information from various online sources and use popular techniques and tools to efficiently profile an organization...