HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 23 guests and 1 member online
EH-Net Donations

Enter Amount:
$
Google Ads
EH-Net News Feeds
Latest Additions
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Ethical Hacking Discussions and Related Certificationsarrow Network Pen Testingarrow CEH - Certified Ethical Hackerarrow CEH - Official Course Modules v5arrow CEH v5 Module 2: Footprinting
Ethical Hacker Community Forums
November 22, 2008, 08:02:25 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: ChicagoCon 2-Day Ethical Hacking Conference with MS Blue Hats Oct 31 - Nov 1. Tickets Only $100! www.chicagocon.com/content/view/103/51/
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: CEH v5 Module 2: Footprinting  (Read 4281 times)
0 Members and 1 Guest are viewing this topic.
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 2347


Editor-In-Chief


View Profile WWW
« on: November 13, 2006, 04:40:06 PM »
 Revisiting Reconnaissance
 Defining of Footprinting
 Information Gathering Methodology
 Unearthing Initial Information
 Finding a Company’s URL
 Internal URL
 Extracting Archive 0f a Website
 Google Search for Company’s Info.
 People Search
 Footprinting Through Job Sites
 Passive Information Gathering
 Competitive Intelligence Gathering
 Why Do You Need Competitive Intelligence?
 Companies Providing Competitive Intelligence Services
 Competitive Intelligence
    o When Did This Company Begin?
    o How Did It Develop?
    o What Are This Company's Plans?
    o What Does Expert Opinion Say About The Company?
    o Who Are The Leading Competitors?
 Public and Private Websites
 Tools
    o DNS Enumerator
    o SpiderFoot
    o Sensepost Footprint Tools
        • BiLE.pl
        • BiLE-weigh.pl
        • tld-expand.pl
        • vet-IPrange.pl
        • qtrace.pl
        • vet-mx.pl
        • jarf-rev
        • jarf-dnsbrute
    o Wikito Footprinting Tool
    o Web Data Extractor Tool
    o Whois
    o Nslookup
    o Necrosoft
    o ARIN
    o Traceroute
    o Neo Trace
    o GEOSpider
    o Geowhere
    o GoogleEarth
    o VisualRoute Trace
    o Kartoo Search Engine
    o Touchgraph Visual Browser
    o SmartWhois
    o VisualRoute Mail Tracker
    o eMailTrackerPro
    o Read Notify
    o HTTrack Web Site Copier
    o Web Ripper
    o robots.txt
    o Website watcher
    o E-mail Spider
    o Power E-mail Collector Tool
 Steps to Perform Footprinting

Source:
http://www.eccouncil.org/EC-Council%20Education/ceh-course-outline.htm

Don
Logged
CISSP, MCSE, CEH, Security+ SME
ChrisG
EH-Net Columnist
Hero Member
*****
Offline Offline

Posts: 1038


View Profile WWW
« Reply #1 on: November 13, 2006, 09:41:54 PM »
using those sensepost enumeration tools should be cool...
Logged
...tests i took go here...

http://carnal0wnage.blogspot.com/
blackice2007
Newbie
*
Offline Offline

Posts: 19



View Profile WWW
« Reply #2 on: July 28, 2007, 01:48:13 PM »

What is Footprinting : Footprinting is the Reconnaissance phase of the 5 step attack wheel
The first of the three pre-attack phases Information gathering

Methodology

1 - Unearth Initial Information Footprinting
2 - Locate the network range Footprinting
3 - Ascertain active machines
4 - Discover open ports / access points
5 - Detect operating systems
6 - Uncover services on ports
7 - Map the network

Unearth Initial Information
Commonly Includes
Domain Name Lookups
Locations
Contacts
Telephone
E-mail
Mail

Information Sources
Search Engines and Websites Open Source
Whois
Domain and IP information
Information about Registered Domains
SmartWhois Tools
Provides DNS information Nslookup
Hacking Tools
Sam Spade
Provides Whois and DNS Dig functionality


Locate the Network Range

After gathering information, next step is to find the network range of the target
Information can be obtained from
IANA Providers
ARIN
APNIC
RIPE

Trace the route between your network and the target
Traceroute
Exploits the IP TTL
Reveals path IP packets take
Sends out consecutive UDP packets
with ever increasing TTLs
Device sends back an ICMP TTL
Exceeded message
Some devices will also reply with DNS information
Logged
BlackIce don't melt!
=============================
C|EH, SSP-MPA, GHTQ, GCWN, SSP-GHD
sgt_mjc
Full Member
***
Offline Offline

Posts: 156


View Profile
« Reply #3 on: February 06, 2008, 11:12:09 AM »
It is quite scary the information available on the net that you or your target may not even be aware of. I have found the techniques learned here through the course to be useful for more than just recon of a target but to also help with job hunting.
Logged
Mike Conway
CompTia Security +
C|EH
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.7 | SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.049 seconds with 26 queries.
 
Sponsors

cwnp_moto__120x90.gif

Polls
During the most recent election, I:
 
Support EH-Net

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.
cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Sadikhov.com
Top IT Cert Sites

binarica.com
Binarica Logo

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2008 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.