HomeGitHubPortfolioTwitter/XMediumCont@ct

2.2 - Information Gathering

Information Gathering

Topics

  1. Gathering Information on Your Targets

  2. Infrastructure

  3. Fingerprinting Frameworks and Applications

  4. Fingerprinting Custom Applications

  5. Enumerating Resources

  6. Information Disclosure Through Misconfiguration

  7. Google Hacking

  8. Shodan HQ

What is Information Gathering?

  • The initial phase of any penetration test involves information gathering. This step revolves around gathering data about an individual, company, website, or system that is the target of the assessment.

  • Success in the later stages of a penetration test is closely linked to the extent of information gathered about the target. In other words, the more comprehensive the data collected, the higher the chances of success.

  • Information gathering can be categorized into two main types: passive and active.

1.1 Information Gathering1.2 Footprinting & Scanning2 - Footprinting & Recon1.3 Enumeration
Previous2.1.6 Web App ProxiesNext2.2.1 Gathering Information on Your Targets