Penetration Testing Bootcamp - Information Gathering

HackerSploit · Advanced ·🔐 Cybersecurity ·6y ago

Key Takeaways

This video covers information gathering in penetration testing, including passive and active reconnaissance, and introduces various tools and techniques for gathering information about a target organization.

Full Transcript

hello everyone welcome back to the penetration testing boot camp in this video we're going to be taking a look at information gathering or reconnaissance uh we're also going to take a look at passive and active information gathering but the main focus is to introduce you to information gathering and then we'll take a look at the various tools and techniques that we'll be using in passive information gathering all right so let's get started so first of all what is information gathering or reconnaissance right so information gathering or footprinting as it's also known as in certain cases and i'll i'll demystify that later but it is it is the first stage in a penetration test and it is the process of gathering as much information about the target and its information systems and architecture as possible right so this information is very important because it's then used to find various ways to gain access to the organization's network or infrastructure so the reason uh you know information gathering is the first step in apn test is because it gives you an overview of the organization's information systems the structure uh what assets the company has what service they have and then this gives the penetration tester a clear view of where the weaknesses lie in so far as you know the vulnerabilities that exist what areas might be the most susceptible to weakness and it allows the penetration tester to fine tune the pen test and that's why this is one of the most important phases in penetration testing now there are two types of information gathering that really entail two types of data or two different types of actually interacting with your target or your client right so let's start off with understanding passive information gathering or reconnaissance so passive information gathering is the process of gathering information about a target without making any direct contact with the target's digital infrastructure or really not engaging with the target actively so passive information uh passive information gathering relies on os int or open source intelligence or publicly available information to map out uh you know the the uh the the organizations to map out the organization's information systems their structure etc right we then have active information gathering so this is the process of gathering information about a target through direct interaction so this process involves directly interacting with the targets i.t infrastructure or you know the employees whether you're performing uh you know social engineering so you're actually probing the servers you might be trying to scan for open ports on the servers stuff like that however with passive you're dealing with information that's already in the public domain and really you're not targeting or you're not actively engaging with the target yet all right so let's talk about the objectives of information gathering because this is very very important so the main objective of information gathering is to build a blueprint of the targets organizational structure network information and host information all right so as i said this information becomes very useful because it allows you to orchestrate the next steps of the pen test very well so again if you perform very good information gathering or very comprehensive information gathering on your target or the target network you get an idea or a good understanding of of the structure and where you should start off with first right so you're typically tag you're typically targeting the low hanging fruit first secondly it also helps the penetration test to understand the overall security posture of the target network or infrastructure so again this will entail where the flaws or vulnerabilities exist so that he or she can focus on the low hanging fruit that comes to the first objective here so again it's very important that the penetration tester understands the entire scope of the organizational uh of the organizational structure the network information information about the various hosts and you know this this information goes quite in depth as i just say as i just point out right over here so when we take a look at the types of information that we'll be gathering let's start off with network and host based information so the information you're typically looking for are network ranges used by the company ip blocks dns names top level domains sub domains name servers mail servers and the the software that they're using either on the website or the client or employee software packages you know that they use on their desktop computers this can help you you know you know orchestrate social engineering attacks uh if you're targeting their web servers or the of their mail servers then again that information becomes very useful secondly uh you're typically targeting or looking for employee information and this of course is very useful in performing social engineering so you're looking for their name email phone number identity information their role within the company whether or not they have access to critical information and their various interests and then through that you can start building a uh you know a spear phishing um you can you can set up a sphere phishing campaign or you can work around or set up a social engineering campaign as a whole all right so let's talk about the various passive information gathering or osint methodologies techniques and tools and the one that i've set up [Music]

Original Description

In this video, I explain what information gathering is, the types of information gathering and why information gathering is important in penetration testing. 📈 SUPPORT US: Patreon: https://www.patreon.com/hackersploit Merchandise: https://teespring.com/en-GB/stores/hackersploitofficial SOCIAL NETWORKS: Reddit: https://www.reddit.com/r/HackerSploit/ Twitter: https://twitter.com/HackerSploit Instagram: https://www.instagram.com/hackersploit/ LinkedIn: https://www.linkedin.com/company/18713892 WHERE YOU CAN FIND US ONLINE: Blog: https://hsploit.com/ HackerSploit - Open Source Cybersecurity Training: https://hackersploit.org/ HackerSploit Academy: https://www.hackersploit.academy HackerSploit Discord: https://discord.gg/j3dH7tK LISTEN TO THE CYBERTALK PODCAST: Spotify: https://open.spotify.com/show/6j0RhRiofxkt39AskIpwP7 We hope you enjoyed the video and found value in the content. We value your feedback. If you have any questions or suggestions feel free to post them in the comments section or contact us directly via our social platforms. Thanks for watching! Благодарю за просмотр! Kiitos katsomisesta Danke fürs Zuschauen! 感谢您观看 Merci d'avoir regardé Obrigado por assistir دیکھنے کے لیے شکریہ देखने के लिए धन्यवाद Grazie per la visione Gracias por ver شكرا للمشاهدة #PenetrationTesting
Watch on YouTube ↗ (saves to browser)
Sign in to unlock AI tutor explanation · ⚡30

Playlist

Uploads from HackerSploit · HackerSploit · 0 of 60

← Previous Next →
1 How To Install Kali Linux 2.0 On Virtual Box
How To Install Kali Linux 2.0 On Virtual Box
HackerSploit
2 100 Subscriber Q&A! - How I Learned Ethical Hacking
100 Subscriber Q&A! - How I Learned Ethical Hacking
HackerSploit
3 BlackArch Linux Review - Better Than Kali Linux?
BlackArch Linux Review - Better Than Kali Linux?
HackerSploit
4 How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
How to Access the Deep Web Safely | Deep Web Starter Guide 1.0
HackerSploit
5 Wireshark Tutorial for Beginners - Installation
Wireshark Tutorial for Beginners - Installation
HackerSploit
6 Wireshark Tutorial for Beginners - Overview of the environment
Wireshark Tutorial for Beginners - Overview of the environment
HackerSploit
7 Wireshark Tutorial for Beginners - Capture options
Wireshark Tutorial for Beginners - Capture options
HackerSploit
8 Wireshark Tutorial for Beginners - Filters
Wireshark Tutorial for Beginners - Filters
HackerSploit
9 Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
Complete Ethical Hacking Course - Become a Hacker Today - #1 Hacking Terminology
HackerSploit
10 Complete Ethical Hacking Course #2 - Installing Kali Linux
Complete Ethical Hacking Course #2 - Installing Kali Linux
HackerSploit
11 Parrot OS 3.5 Review | The Best Kali Linux Alternative
Parrot OS 3.5 Review | The Best Kali Linux Alternative
HackerSploit
12 Nmap Tutorial For Beginners - 1 - What is Nmap?
Nmap Tutorial For Beginners - 1 - What is Nmap?
HackerSploit
13 Katoolin | How To Install Pentesting Tools On Any Linux Distro
Katoolin | How To Install Pentesting Tools On Any Linux Distro
HackerSploit
14 Nmap Tutorial For Beginners - 2 - Advanced Scanning
Nmap Tutorial For Beginners - 2 - Advanced Scanning
HackerSploit
15 Nmap Tutorial For Beginners - 3 - Aggressive Scanning
Nmap Tutorial For Beginners - 3 - Aggressive Scanning
HackerSploit
16 Zenmap Tutorial For Beginners
Zenmap Tutorial For Beginners
HackerSploit
17 How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
How To Setup Proxychains In Kali Linux - #1 - Stay Anonymous
HackerSploit
18 How To Setup Proxychains In Kali Linux - #2 - Change Your IP
How To Setup Proxychains In Kali Linux - #2 - Change Your IP
HackerSploit
19 How To Change Mac Address In Kali Linux | Macchanger
How To Change Mac Address In Kali Linux | Macchanger
HackerSploit
20 How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
How To Setup And Use anonsurf On Kali Linux | Stay Anonymous
HackerSploit
21 Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
Ubuntu 17.04 "Zesty Zapus" Review - Bye Unity
HackerSploit
22 VPN And DNS For Beginners | Kali Linux
VPN And DNS For Beginners | Kali Linux
HackerSploit
23 Tails OS Installation And Review - Access The Deep Web/Dark Net
Tails OS Installation And Review - Access The Deep Web/Dark Net
HackerSploit
24 Steganography Tutorial - Hide Messages In Images
Steganography Tutorial - Hide Messages In Images
HackerSploit
25 The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
The Lazy Script - Kali Linux 2017.1 - Automate Penetration Testing!
HackerSploit
26 Best Linux Distributions For Penetration Testing
Best Linux Distributions For Penetration Testing
HackerSploit
27 Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
Netcat Tutorial - The Swiss Army Knife Of Networking - Reverse Shell
HackerSploit
28 Gaining Access - Web Server Hacking - Metasploitable - #1
Gaining Access - Web Server Hacking - Metasploitable - #1
HackerSploit
29 Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
Web Server Hacking - FTP Backdoor Command Execution With Metasploit - #2
HackerSploit
30 How To Install Kali Linux On VMware  - Complete Guide 2018
How To Install Kali Linux On VMware - Complete Guide 2018
HackerSploit
31 Q&A #1 - Best Cyber-security Certifications?
Q&A #1 - Best Cyber-security Certifications?
HackerSploit
32 Terminator - Kali Linux - Multiple Terminals
Terminator - Kali Linux - Multiple Terminals
HackerSploit
33 Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
Shodan Search Engine Tutorial - Access Routers,Servers,Webcams + Install CLI
HackerSploit
34 Q&A #2 - Mr Robot?
Q&A #2 - Mr Robot?
HackerSploit
35 Metasploit Community Web GUI  - Installation And Overview
Metasploit Community Web GUI - Installation And Overview
HackerSploit
36 Linux Expl0rer - Forensics Toolbox - Installation & Configuration
Linux Expl0rer - Forensics Toolbox - Installation & Configuration
HackerSploit
37 QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
QuasarRAT - The Best Windows RAT? - Remote Administration Tool for Windows
HackerSploit
38 Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
Metasploit For Beginners - #1 - The Basics - Modules, Exploits & Payloads
HackerSploit
39 Metasploit For Beginners - #2 - Understanding Metasploit Modules
Metasploit For Beginners - #2 - Understanding Metasploit Modules
HackerSploit
40 Kali Linux Quick Tips - #1 - Adding a non-root user
Kali Linux Quick Tips - #1 - Adding a non-root user
HackerSploit
41 Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
Metasploit For Beginners - #3 - Information Gathering - Auxiliary Scanners
HackerSploit
42 Spectre Meltdown Vulnerability  - How To Check Your System
Spectre Meltdown Vulnerability - How To Check Your System
HackerSploit
43 Metasploit For Beginners - #4 - Basic Exploitation
Metasploit For Beginners - #4 - Basic Exploitation
HackerSploit
44 ARP Spoofing With arpspoof - MITM
ARP Spoofing With arpspoof - MITM
HackerSploit
45 WordPress Vulnerability Scanning With WPScan
WordPress Vulnerability Scanning With WPScan
HackerSploit
46 Generating A PHP Backdoor with weevely
Generating A PHP Backdoor with weevely
HackerSploit
47 Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
Nikto Web Vulnerability Scanner - Web Penetration Testing - #1
HackerSploit
48 How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
How To Install Kali Linux On Windows 10 - Windows Subsystem For Linux
HackerSploit
49 Stacer - System Optimizer And Monitoring Tool For Linux
Stacer - System Optimizer And Monitoring Tool For Linux
HackerSploit
50 Kali Linux 2018.1 - Kernel Updates & Patches
Kali Linux 2018.1 - Kernel Updates & Patches
HackerSploit
51 MITM With Ettercap - ARP Poisoning
MITM With Ettercap - ARP Poisoning
HackerSploit
52 Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
Password Cracking With John The Ripper - RAR/ZIP & Linux Passwords
HackerSploit
53 How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
How To Detect Rootkits On Kali Linux - chkrootkit & rkhunter
HackerSploit
54 Channel Updates - How To Post Questions & Video Suggestions
Channel Updates - How To Post Questions & Video Suggestions
HackerSploit
55 Web App Penetration Testing - #1 - Setting Up Burp Suite
Web App Penetration Testing - #1 - Setting Up Burp Suite
HackerSploit
56 Web App Penetration Testing - #2 - Spidering & DVWA
Web App Penetration Testing - #2 - Spidering & DVWA
HackerSploit
57 Cl0neMast3r - GitHub Repository Cloning Tool
Cl0neMast3r - GitHub Repository Cloning Tool
HackerSploit
58 Kali Linux On Windows 10 Official - WSL - Installation & Configuration
Kali Linux On Windows 10 Official - WSL - Installation & Configuration
HackerSploit
59 DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
DoS/DDoS Protection - How To Enable ICMP, UDP & TCP Flood Filtering
HackerSploit
60 Web App Penetration Testing - #3 - Brute Force With Burp Suite
Web App Penetration Testing - #3 - Brute Force With Burp Suite
HackerSploit

This video teaches the importance of information gathering in penetration testing and introduces various tools and techniques for gathering information about a target organization. It covers passive and active reconnaissance, and explains how to use open source intelligence to gather network and host based information, as well as employee information.

Key Takeaways
  1. Identify the target organization and its information systems
  2. Gather network and host based information using OSINT tools
  3. Gather employee information using social media and other public sources
  4. Use the gathered information to identify potential vulnerabilities and weaknesses
  5. Perform social engineering attacks using the gathered information
💡 Information gathering is a critical step in penetration testing, as it allows testers to identify potential vulnerabilities and weaknesses in a target organization's information systems.

Related Reads

📰
Social Discovery Group’s Announcement: A Communication That Raises Questions About Transparency and…
Social Discovery Group's announcement raises questions about transparency and cybersecurity, highlighting the importance of critical analysis in the industry
Medium · Cybersecurity
📰
Adobe Producer Spoofing: A PDF Metadata Forgery Case Study
Learn how to detect PDF metadata forgery by analyzing the Adobe Producer string and structural forensics to catch contradictions
Dev.to · Iurii Rogulia
📰
Today's the Deadline: Three Separate CISA Patch Orders Just Collided on the Same Weekend
Apply urgent CISA patches before the deadline to ensure infrastructure security
Dev.to · Fabio Baensch
📰
How Anthropic Could Have Prevented the “Claude Gift Fraud” With Security 101
Learn how Anthropic's security failures led to the Claude gift fraud and how basic security measures could have prevented it
Medium · Cybersecurity
Up next
Best VPN for Mac 2026 — Top 3 Tested and Which ONE Wins
Tutorial Stack
Watch →