Book Image

Reconnaissance for Ethical Hackers

By : Glen D. Singh
5 (1)
Book Image

Reconnaissance for Ethical Hackers

5 (1)
By: Glen D. Singh

Overview of this book

This book explores reconnaissance techniques – the first step in discovering security vulnerabilities and exposed network infrastructure. It aids ethical hackers in understanding adversaries’ methods of identifying and mapping attack surfaces, such as network entry points, which enables them to exploit the target and steal confidential information. Reconnaissance for Ethical Hackers helps you get a comprehensive understanding of how threat actors are able to successfully leverage the information collected during the reconnaissance phase to scan and enumerate the network, collect information, and pose various security threats. This book helps you stay one step ahead in knowing how adversaries use tactics, techniques, and procedures (TTPs) to successfully gain information about their targets, while you develop a solid foundation on information gathering strategies as a cybersecurity professional. The concluding chapters will assist you in developing the skills and techniques used by real adversaries to identify vulnerable points of entry into an organization and mitigate reconnaissance-based attacks. By the end of this book, you’ll have gained a solid understanding of reconnaissance, as well as learned how to secure yourself and your organization without causing significant disruption.

Related Content you might be interested in

Current Title:

Small book image
Reconnaissance for Ethical Hackers
Glen D. Singh
Aug, 2023 | 430 pages
Small book image
The Ultimate Kali Linux Book
Glen D Singh
Feb, 2022 | 742 pages
Small book image
Learn Kali Linux 2019
Glen D Singh
Nov, 2019 | 550 pages
Small book image
Hands-On Penetration Testing with Kali NetHunter
SeanPhilip Oriyano | Glen D Singh
Feb, 2019 | 302 pages
Table of Contents (15 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Disclaimer
Get in touch
Share your thoughts
Download a free PDF copy of this book
1
Part 1: Reconnaissance and Footprinting
Part 1: Reconnaissance and Footprinting
Free Chapter
2
Chapter 1: Fundamentals of Reconnaissance
Chapter 1: Fundamentals of Reconnaissance
What is ethical hacking?
The importance of reconnaissance
Understanding attack surface management
Reconnaissance tactics, techniques, and procedures
Summary
Further reading
3
Chapter 2: Setting Up a Reconnaissance Lab
Chapter 2: Setting Up a Reconnaissance Lab
Technical requirements
Lab overview and technologies
Setting up a hypervisor and virtual networking
Deploying Kali Linux
Deploying an OSINT virtual machine
Implementing vulnerable systems
Summary
Further reading
4
Chapter 3: Understanding Passive Reconnaissance
Chapter 3: Understanding Passive Reconnaissance
Technical requirements
Exploring passive reconnaissance
Fundamentals of OSINT
Concealing your online identity
Anonymizing your network traffic
Summary
Further reading
5
Chapter 4: Domain and DNS Intelligence
Chapter 4: Domain and DNS Intelligence
Technical requirements
Leveraging search engines for OSINT
Domain intelligence
Discovering sub-domains
DNS reconnaissance
Summary
Further reading
6
Chapter 5: Organizational Infrastructure Intelligence
Chapter 5: Organizational Infrastructure Intelligence
Technical requirements
Harvesting data from the internet
Discovering exposed systems
Collecting social media OSINT
Summary
Further reading
7
Chapter 6: Imagery, People, and Signals Intelligence
Chapter 6: Imagery, People, and Signals Intelligence
Technical requirements
Image and metadata analysis
People and user intelligence
Wireless signals intelligence
Summary
Further reading
8
Part 2: Scanning and Enumeration
Part 2: Scanning and Enumeration
9
Chapter 7: Working with Active Reconnaissance
Chapter 7: Working with Active Reconnaissance
Technical requirements
Active reconnaissance
Spoofing your identity on a network
Discovering live hosts on a network
Using evasion techniques
Enumerating network services
Wireless reconnaissance
Summary
Further reading
10
Chapter 8: Performing Vulnerability Assessments
Chapter 8: Performing Vulnerability Assessments
Technical requirements
The importance of vulnerability management
Working with Nessus
Using Greenbone Vulnerability Manager
Vulnerability discovery with Nmap
Summary
Further reading
11
Chapter 9: Delving into Website Reconnaissance
Chapter 9: Delving into Website Reconnaissance
Technical requirements
Collecting domain information
Sub-domain enumeration
Performing directory enumeration
Web application vulnerability
Web reconnaissance frameworks
Summary
Further reading
12
Chapter 10: Implementing Recon Monitoring and Detection Systems
Chapter 10: Implementing Recon Monitoring and Detection Systems
Technical requirements
Wireshark for ethical hackers
Monitoring and detection systems
Summary
Further reading
13
Index
Index
Why subscribe?
14
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share your thoughts
Download a free PDF copy of this book

To get the most out of this book

To get the most out of this book, it’s recommended to have a solid foundation in networking, such as understanding common network and application protocols of the TCP/IP, IP addressing, routing and switching concepts, and the roles and functions of networking devices and security appliances. Knowledge of virtualization technologies such as hypervisors and their components will be beneficial as most labs are built within a virtualized environment to reduce the need to purchase additional systems.

Software/hardware covered in the book

Kali Linux 2022.4

Oracle VM VirtualBox

Kali Linux ARM 2023.1

Oracle VirtualBox Extension Pack

Trace Labs OSINT VM 2022.1

Vagrant 2.3.3

OWASP JuiceShop

7-Zip

Metasploitable 3 v0.1.0

VMware Workstation 17 Pro

Security Onion 2.3

TOR and TOR Browser

Recon-ng

Nessus Essentials

SpiderFoot

Sherlock

Sn1per

Amass

Raspberry Pi 3 B+

Alfa AWUS036NHA - Wireless B/G/N USB Adapter

VK-162 G-Mouse USB GPS Dongle Navigation Module

All labs and exercises were built on a system running Windows 11 Home as the host operating system, a multicore processor with virtualization enabled, 16 GB of RAM, and 400 GB of free storage for the virtual machines. Oracle VM VirtualBox was the preferred choice when choosing a hypervisor as it provides great virtual networking capabilities and it’s free, however, VMware Workstation Pro was also used to set up the threat detection system at the end of the book.

If you are using the digital version of this book, we advise you to type the code yourself or access the code from the book’s GitHub repository (a link is available in the next section). Doing so will help you avoid any potential errors related to the copying and pasting of code.

After completing this book, equipped with your imagination and newfound skills, attempt to create additional lab scenarios and even extend your lab environment with additional virtual machines to further improve your skillset. This will help you with continuous learning while developing your skills as an aspiring ethical hacker.

Previous Section
Next Section