- Mastering Kali Linux for Advanced Penetration Testing
- Robert W. Beggs
- 229字
- 2021-07-16 11:33:20
Chapter 2. Identifying the Target – Passive Reconnaissance
Reconnaissance is the first step of the kill chain when conducting a penetration test or an attack against a network or server target. An attacker will typically dedicate up to seventy-five percent of the overall work effort for a penetration test to reconnaissance, as it is this phase that allows the target to be defined, mapped, and explored for the vulnerabilities that will eventually lead to exploitation.
There are two types of reconnaissance: passive reconnaissance, and active reconnaissance.
Generally, passive reconnaissance is concerned with analyzing information that is openly available, usually from the target itself or public sources online. On accessing this information, the tester or attacker does not interact with the target in an unusual manner—requests and activities will not be logged, or will not be traced directly to the tester. Therefore, passive reconnaissance is conducted first to minimize the direct contact that may signal an impending attack or to identify the attacker.
In this chapter, you will learn the principles and practices of passive reconnaissance, which include the following:
- Basic principles of reconnaissance
- Open-source intelligence (OSINT)
- DNS reconnaissance and route mapping, including issues with IPv4 and IPv6
- Obtaining user information
- Profiling users for password lists
Active reconnaissance, which involves direct interaction with the target, will be covered in Chapter 3, Active Reconnaissance and Vulnerability Scanning.
- unidbg逆向工程:原理與實踐
- 網(wǎng)絡空間攻防技術原理
- Metasploit Penetration Testing Cookbook(Second Edition)
- 信息系統(tǒng)安全檢測與風險評估
- 暗戰(zhàn)亮劍:黑客滲透與防御全程實錄
- 等級保護測評理論及應用
- 深入淺出隱私計算:技術解析與應用實踐
- Getting Started with FortiGate
- Testing and Securing Android Studio Applications
- 硬黑客:智能硬件生死之戰(zhàn)
- 網(wǎng)絡空間安全實驗
- 信息安全案例教程:技術與應用(第2版)
- 云原生安全技術實踐指南
- Building a Home Security System with BeagleBone
- 數(shù)據(jù)安全與流通:技術、架構與實踐