Penetration Testing Bootcamp - Information Gathering
Key Takeaways
This video covers information gathering in penetration testing, including passive and active reconnaissance, and introduces various tools and techniques for gathering information about a target organization.
Full Transcript
hello everyone welcome back to the penetration testing boot camp in this video we're going to be taking a look at information gathering or reconnaissance uh we're also going to take a look at passive and active information gathering but the main focus is to introduce you to information gathering and then we'll take a look at the various tools and techniques that we'll be using in passive information gathering all right so let's get started so first of all what is information gathering or reconnaissance right so information gathering or footprinting as it's also known as in certain cases and i'll i'll demystify that later but it is it is the first stage in a penetration test and it is the process of gathering as much information about the target and its information systems and architecture as possible right so this information is very important because it's then used to find various ways to gain access to the organization's network or infrastructure so the reason uh you know information gathering is the first step in apn test is because it gives you an overview of the organization's information systems the structure uh what assets the company has what service they have and then this gives the penetration tester a clear view of where the weaknesses lie in so far as you know the vulnerabilities that exist what areas might be the most susceptible to weakness and it allows the penetration tester to fine tune the pen test and that's why this is one of the most important phases in penetration testing now there are two types of information gathering that really entail two types of data or two different types of actually interacting with your target or your client right so let's start off with understanding passive information gathering or reconnaissance so passive information gathering is the process of gathering information about a target without making any direct contact with the target's digital infrastructure or really not engaging with the target actively so passive information uh passive information gathering relies on os int or open source intelligence or publicly available information to map out uh you know the the uh the the organizations to map out the organization's information systems their structure etc right we then have active information gathering so this is the process of gathering information about a target through direct interaction so this process involves directly interacting with the targets i.t infrastructure or you know the employees whether you're performing uh you know social engineering so you're actually probing the servers you might be trying to scan for open ports on the servers stuff like that however with passive you're dealing with information that's already in the public domain and really you're not targeting or you're not actively engaging with the target yet all right so let's talk about the objectives of information gathering because this is very very important so the main objective of information gathering is to build a blueprint of the targets organizational structure network information and host information all right so as i said this information becomes very useful because it allows you to orchestrate the next steps of the pen test very well so again if you perform very good information gathering or very comprehensive information gathering on your target or the target network you get an idea or a good understanding of of the structure and where you should start off with first right so you're typically tag you're typically targeting the low hanging fruit first secondly it also helps the penetration test to understand the overall security posture of the target network or infrastructure so again this will entail where the flaws or vulnerabilities exist so that he or she can focus on the low hanging fruit that comes to the first objective here so again it's very important that the penetration tester understands the entire scope of the organizational uh of the organizational structure the network information information about the various hosts and you know this this information goes quite in depth as i just say as i just point out right over here so when we take a look at the types of information that we'll be gathering let's start off with network and host based information so the information you're typically looking for are network ranges used by the company ip blocks dns names top level domains sub domains name servers mail servers and the the software that they're using either on the website or the client or employee software packages you know that they use on their desktop computers this can help you you know you know orchestrate social engineering attacks uh if you're targeting their web servers or the of their mail servers then again that information becomes very useful secondly uh you're typically targeting or looking for employee information and this of course is very useful in performing social engineering so you're looking for their name email phone number identity information their role within the company whether or not they have access to critical information and their various interests and then through that you can start building a uh you know a spear phishing um you can you can set up a sphere phishing campaign or you can work around or set up a social engineering campaign as a whole all right so let's talk about the various passive information gathering or osint methodologies techniques and tools and the one that i've set up [Music]
Original Description
In this video, I explain what information gathering is, the types of information gathering and why information gathering is important in penetration testing.
📈 SUPPORT US:
Patreon: https://www.patreon.com/hackersploit
Merchandise: https://teespring.com/en-GB/stores/hackersploitofficial
SOCIAL NETWORKS:
Reddit: https://www.reddit.com/r/HackerSploit/
Twitter: https://twitter.com/HackerSploit
Instagram: https://www.instagram.com/hackersploit/
LinkedIn: https://www.linkedin.com/company/18713892
WHERE YOU CAN FIND US ONLINE:
Blog: https://hsploit.com/
HackerSploit - Open Source Cybersecurity Training: https://hackersploit.org/
HackerSploit Academy: https://www.hackersploit.academy
HackerSploit Discord: https://discord.gg/j3dH7tK
LISTEN TO THE CYBERTALK PODCAST:
Spotify: https://open.spotify.com/show/6j0RhRiofxkt39AskIpwP7
We hope you enjoyed the video and found value in the content. We value your feedback. If you have any questions or suggestions feel free to post them in the comments section or contact us directly via our social platforms.
Thanks for watching!
Благодарю за просмотр!
Kiitos katsomisesta
Danke fürs Zuschauen!
感谢您观看
Merci d'avoir regardé
Obrigado por assistir
دیکھنے کے لیے شکریہ
देखने के लिए धन्यवाद
Grazie per la visione
Gracias por ver
شكرا للمشاهدة
#PenetrationTesting
Watch on YouTube ↗
(saves to browser)
Sign in to unlock AI tutor explanation · ⚡30
Playlist
Uploads from HackerSploit · HackerSploit · 0 of 60
← Previous
Next →
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
How To Install Kali Linux 2.0 On Virtual Box
HackerSploit
100 Subscriber Q&A! - How I Learned Ethical Hacking
HackerSploit
BlackArch Linux Review - Better Than Kali Linux?
HackerSploit
How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
HackerSploit
Wireshark Tutorial for Beginners - Installation
HackerSploit
Wireshark Tutorial for Beginners - Overview of the environment
HackerSploit
Wireshark Tutorial for Beginners - Capture options
HackerSploit
Wireshark Tutorial for Beginners - Filters
HackerSploit
Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
HackerSploit
Complete Ethical Hacking Course #2 - Installing Kali Linux
HackerSploit
Parrot OS 3.5 Review | The Best Kali Linux Alternative
HackerSploit
Nmap Tutorial For Beginners - 1 - What is Nmap?
HackerSploit
Katoolin | How To Install Pentesting Tools On Any Linux Distro
HackerSploit
Nmap Tutorial For Beginners - 2 - Advanced Scanning
HackerSploit
Nmap Tutorial For Beginners - 3 - Aggressive Scanning
HackerSploit
Zenmap Tutorial For Beginners
HackerSploit
How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
HackerSploit
How To Setup Proxychains In Kali Linux - #2 - Change Your IP
HackerSploit
How To Change Mac Address In Kali Linux | Macchanger
HackerSploit
How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
HackerSploit
Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
HackerSploit
VPN And DNS For Beginners | Kali Linux
HackerSploit
Tails OS Installation And Review - Access The Deep Web/Dark Net
HackerSploit
Steganography Tutorial - Hide Messages In Images
HackerSploit
The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
HackerSploit
Best Linux Distributions For Penetration Testing
HackerSploit
Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
HackerSploit
Gaining Access - Web Server Hacking - Metasploitable - #1
HackerSploit
Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
HackerSploit
How To Install Kali Linux On VMware - Complete Guide 2018
HackerSploit
Q&A #1 - Best Cyber-security Certifications?
HackerSploit
Terminator - Kali Linux - Multiple Terminals
HackerSploit
Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
HackerSploit
Q&A #2 - Mr Robot?
HackerSploit
Metasploit Community Web GUI - Installation And Overview
HackerSploit
Linux Expl0rer - Forensics Toolbox - Installation & Configuration
HackerSploit
QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
HackerSploit
Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
HackerSploit
Metasploit For Beginners - #2 - Understanding Metasploit Modules
HackerSploit
Kali Linux Quick Tips - #1 - Adding a non-root user
HackerSploit
Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
HackerSploit
Spectre Meltdown Vulnerability - How To Check Your System
HackerSploit
Metasploit For Beginners - #4 - Basic Exploitation
HackerSploit
ARP Spoofing With arpspoof - MITM
HackerSploit
WordPress Vulnerability Scanning With WPScan
HackerSploit
Generating A PHP Backdoor with weevely
HackerSploit
Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
HackerSploit
How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
HackerSploit
Stacer - System Optimizer And Monitoring Tool For Linux
HackerSploit
Kali Linux 2018.1 - Kernel Updates & Patches
HackerSploit
MITM With Ettercap - ARP Poisoning
HackerSploit
Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
HackerSploit
How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
HackerSploit
Channel Updates - How To Post Questions & Video Suggestions
HackerSploit
Web App Penetration Testing - #1 - Setting Up Burp Suite
HackerSploit
Web App Penetration Testing - #2 - Spidering & DVWA
HackerSploit
Cl0neMast3r - GitHub Repository Cloning Tool
HackerSploit
Kali Linux On Windows 10 Official - WSL - Installation & Configuration
HackerSploit
DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
HackerSploit
Web App Penetration Testing - #3 - Brute Force With Burp Suite
HackerSploit
More on: Network Security
View skill →Related Reads
📰
📰
📰
📰
Social Discovery Group’s Announcement: A Communication That Raises Questions About Transparency and…
Medium · Cybersecurity
Adobe Producer Spoofing: A PDF Metadata Forgery Case Study
Dev.to · Iurii Rogulia
Today's the Deadline: Three Separate CISA Patch Orders Just Collided on the Same Weekend
Dev.to · Fabio Baensch
How Anthropic Could Have Prevented the “Claude Gift Fraud” With Security 101
Medium · Cybersecurity
🎓
Tutor Explanation
DeepCamp AI