Reconnaissance
Summary
Purpose
Guiding Questions
Operational Security
Preparation
Outputs
References and resources for Reconnaissance
-
Standard: Intelligence Gathering (The Penetration Testing Execution Standard)
-
Guide: "Passive Reconnaissance" (Security Sift)
-
Tool: "NameChk account search" (NameChk)
-
List: "Open Source Intelligence Links" (Intel Techniques)
-
List: "OSINT Tools - Recommendations List Free OSINT Tools." (subliminalhacking.net)
-
Guide: "OWASP Testing Guide v4 - Information Gathering" (OWASP)
- Database: "find the email address formats in use at thousands of companies." (Email Format)
-
Online Courses: Power Searching and Advanced Power Searching online courses (Power Searching With Google)
-
Online Course: Advanced Power Searching By Skill (Power Searching With Google)
-
Cheat Sheet: Google Search Operators (Google Support)
-
Cheat Sheet: Google Hacking and Defense Cheat Sheet (SANS)
-
Cheat Sheet: Google Searchable Filetypes (Google Support)
-
Cheat Sheet: Google Search Punctuation Operators (Google Support)
-
Cheat Sheet: Google Power Searching Quick Reference Guide (Power Searching With Google)
-
Database: Google Hacking Database (Exploit Database)
-
Article: "Using Pastebin Sites for Pen Testing Reconnaissance" (Lenny Zeltser)
-
Custom Search "This custom search page indexes 80 Paste Sites:" (Intel Techniques)
-
Article "Pastebin: How a popular code-sharing site became the ultimate hacker hangout" (Matt Brian)
-
Advanced Search "Github Advanced Search" (Github)
-
Site: "Recon-ng: Website" (Bitbu * Guide: [The Recon-ng Frameworkcket)
-
Type: "Recon-ng: Usage Guide" (Bitbucket)
-
Demonstration: "Look Ma, No Exploits! – The Recon-ng Framework - Tim "LaNMaSteR53" Tomes" (Derbycon 2013)
-
Guide: toolsmith guide to Recon-ng
-
Video: Tektip ep26 - Information gathering with Recon-ng Video Tutorial
-
Guide: The Recon-ng Framework : Automated Information Gathering
Open Source Intelligence (General):
Organizational Information Gathering:
Searching:
Pastebin Searching:
Recon-ng: