Cyber Reconnaissance Techniques for Gathering Sensitive Data

week 2 cis 215 recon n.w
1 / 12
Embed
Share

Explore the world of cyber reconnaissance from non-invasive to invasive tools, delving into sources like OSINT and PING. Learn about gathering essential data pieces and footprints, including DNS details, nameservers, and more. Dive into the search for information like names, jobs, emails, and financials, as well as utilizing tools for DNS reconnaissance and web scraping. Discover passive scanning tools, techniques to avoid detection, and the concept of honey traps in cybersecurity.

  • Cyber Reconnaissance
  • Data Gathering
  • DNS Recon
  • OSINT
  • Passive Scanning
rayaanacharya
jveron Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. Week 2 CIS 215 RECON

  2. Start gathering info Work from non-invasive (OSINT) up to more invasive tools (PING) What sources are useful? Cached pages Keywords and file specific (passwords, RSA token, *PDF etc.) What pieces of data are we looking for? Think high level before you deep dive Footprint What's visible from the outside?

  3. Footprint DNS Nameservers IP Ranges Banners Operating Systems IDS/IPS and other security systems Network Devices Other Devices and job postings Mobile Opportunities Buckets of Data

  4. What data are we looking for? Names Jobs Emails Personal info Documents Financials, company structure

  5. Activity Let's start with Open Source Intelligence (OSINT) What can Google tell us about NECC? How can we make Google tell us more? Where can we look beyond Google (What other search engines have you tried?) Start a MindMap on the board of what you've found

  6. Let's get more invasive DNS Servers Automated Collections of data and web scraping Metadata Documents Posted? Who wrote them Pictures posted? Who took them and where? Jobs listed? What tools/services do we use?

  7. DNS Recon Dig - domain information groper fierce Brute force approach Nslookup less info, but almost always available Nameservers wildcard sub-domains, word lists for sub-domains Alternate Nameservers DNSSEC Originally DNS had no security built in Doesn't protect confidentiality, only for protection against forged or manipulated DNS data

  8. Activity Try some Tools Passive scans ONLY right now Whois IPADDRESS Dig URL Fierce dns URL Nmap IPADDRESS <-- Caution! Caution! Dnsenum URL Dnsrecon d URL Everyone find 1-2 more passive tools, explain how they work and how they avoid detection

  9. Traps Honey traps (Older term was HoneyPot, can offend people) Example: Email only seen by scraper can be monitored to detect activity Fake Social Media Accounts for "Employees" Junk info to detect scraping White text on white background Small text Be careful of Accessibility! How to defeat scrapers Jane@doe.com vs Jane at doe dot com, vs CEO at doe dot com Limit searching by timeout, IP or Browser headers

  10. Reporting Reports are the least fun and most needed part of the job They are what you turn in at the end, shows what worked and what didn't. Open office Easy to use Doesn't like weird data (PCAP, nmap scans etc) Unwieldy at large volume Magic tree Straightforward data consolidation Uses a tree structure for organization Dradis The one we'll be using, has better documentation

  11. Dradis Nodes In place of folders for organization Issues Vulnerabilities found Methodologies Checklists and time lines, think project management Uses an IP address or website so it's easy to share with a team

  12. Activity Start up Dradis and start your first report. You'll be creating a report on the Pen test of the school Dradis has a community edition Start your report and upload the data you collected from the passive scans and your notes from OSINT recon https://dradisframework.com/ce/documentation/

Related


Comprehensive Bug Hunting Toolkit for Cybersecurity Enthusiasts

Comprehensive Bug Hunting Toolkit for Cybersecurity Enthusiasts

cyan
Carers Week 2024 Programme of Activities in Shropshire

Carers Week 2024 Programme of Activities in Shropshire

arrietty
Science Week at a Glance: Water in Earth's Processes

Science Week at a Glance: Water in Earth's Processes

jemima
Science Week at a Glance: Water in Earth's Processes

Science Week at a Glance: Water in Earth's Processes

bodhi
Week of Respect 2023-2024: Promoting Kindness and Anti-Bullying Initiatives

Week of Respect 2023-2024: Promoting Kindness and Anti-Bullying Initiatives

omri
Ocean City Md Bike Week 2024 - bikesonline24.com

Ocean City Md Bike Week 2024 - bikesonline24.com

Amelia1
Exciting Activities and Appreciation for Carers Week in Shropshire

Exciting Activities and Appreciation for Carers Week in Shropshire

jannah
Tamil Grade 2 Week 1 Alphabets and Numbers Learning Sessions

Tamil Grade 2 Week 1 Alphabets and Numbers Learning Sessions

analia
Flashback in Four - Art and Techniques Exploration

Flashback in Four - Art and Techniques Exploration

vanille
Insights into the Days of the Week by E. V. Lucas

Insights into the Days of the Week by E. V. Lucas

honor
Take Action Against Bullying: Anti-Bullying Week 2022

Take Action Against Bullying: Anti-Bullying Week 2022

algernon
Weekly System Status 2022 - Week 1 (19/12/2022 - 25/12/2022) Analysis

Weekly System Status 2022 - Week 1 (19/12/2022 - 25/12/2022) Analysis

yousuf
Implementing State-Adopted Content Standards: Week One Overview

Implementing State-Adopted Content Standards: Week One Overview

emory
Pulmonary Rehabilitation: Benefits of a 12-Week Program - One Year Follow-Up

Pulmonary Rehabilitation: Benefits of a 12-Week Program - One Year Follow-Up

dominik
Days of the Week Unscramble Game - Practice Weekday Names!

Days of the Week Unscramble Game - Practice Weekday Names!

oriane
Benefits of 8-Week Courses at Ivy Tech: A Comparative Study

Benefits of 8-Week Courses at Ivy Tech: A Comparative Study

aodh
Old Palace Senior School Summer Menu Week One

Old Palace Senior School Summer Menu Week One

essa
Fun-filled Moments in Unit 7 - A Week by Week Adventure

Fun-filled Moments in Unit 7 - A Week by Week Adventure

abdirahman
Primary School Autumn 2021 Lunch Menus: Week 1 & Week 2 Mains and Desserts

Primary School Autumn 2021 Lunch Menus: Week 1 & Week 2 Mains and Desserts

vanderwal_a
Cummins RETP - Engine Tailoring Program Overview

Cummins RETP - Engine Tailoring Program Overview

jjos
LAP Reading & Me: Six-Week Series with Kristi Sloan

LAP Reading & Me: Six-Week Series with Kristi Sloan

jusi592
Daily ELA Review Grade 3 - Week 31 & Week 32 Activities

Daily ELA Review Grade 3 - Week 31 & Week 32 Activities

coughlan_k

More Related Content