Information Gathering

Posted on by deadsec

Information gathering certainly is one of the most important step on penetration testing, by getting information of the target to make easy to the attacker compromise the system.

Therefore the act of collecting information from various sources through various means.

There are various techniques used to gather information trough the Internet, they can be by surveys, interview’s or by searching documents on the Internet that are open to the public.

Using advanced operators the gathering of information will be more easy and the reason is we will filter other result that we may not want in our search.

There are few books that teach this techniques one of them is Google Hacking For Penetration Testing.

This advance search operators or queries are used as following:

operator:search_term

This are the advance operator

advance operators at glance
advance operators at glance

Using the option of cached can help to find deleted information that can be used to gather useful information from a web page

Special Search Characters
( + ) force inclusion of something common
( – ) exclude a search term
( “ ) use quotes around search phrases
( . ) a single-character wild card
( * ) any word
( | ) boolean ‘OR’
Parenthesis group queries (“master card” | master card)
more of this techniques can be found in the book:
 
however Inteltechniques.com, have all the tools needed to gather all the information you may need from target.
 
This web site have all resources that certainly help you succeed and have training available that will help your skills.



Published by deadsec