Lab7

38

LAB #3 | Perform Data Gathering and Footprinting on a Targeted Website

LAB #3 – ASSESSMENT WORKSHEET

Perform Data Gathering and Footprinting on a Targeted Website
Course Name and Number: Student Name: Instructor Name: Lab Due Date:

Overview
In this lab, you targeted an organization with an e-commerce website and performed data gathering and footprinting for that site. You collected public domain information about an organization’s website by making use of Google hacking techniques, downloading the Sam Spade reconnaissance-gathering tool, and using nslookup and tracert, similar DOS command tools packaged with Microsoft® Windows. You also researched public domain sites such as IANA’s WHOIS tool to obtain public domain information about the targeted website. Finally, you performed Google hacking research on the targeted organization’s e-commerce website to identify other shared information.

Lab Assessment Questions & Answers
1. Which reconnaissance tool comes with Microsoft® Windows that can provide reconnaissance-gathering

data and can be initiated from the DOS command prompt? What useful information does this query provide?

name and the IP address associated with the source you are targeting.

2. What is the difference between ARIN, RIPE, and IANA? What regions of the world do these domain name

registry organizations cover?
The internet assigned numbers authority (IANA) delegates internet resources to the regional internet registries which are what ARIN (American Registry for Internet Numbers) and RIPE (Reseaux IP Europeens Network Coordination Centre)

ARIN covers the United States, Canada, several parts of the Carribean and Antartica.

RIPE covers Europe, Russia, the MIddle East, and central Asia.

Assessment Worksheet
3. What other functions can be completed using the Sam Spade utility?

39

You can do Zone Transfers, SMTP relay checks, scan addresses, crawl

websites, browse the web for the domain, check cancels, do a fast trace route on the domain, a slow traceroute on the domain, a S-lang

command, decode the URL, or parse email headers.

4. What is the purpose of the traceroute command? What useful information does traceroute provide? How

can this information be used to attack the targeted website?

It is a way to find out what routers you go through on the internet to get to

a specific destination on the internet. It provides the information on how to get to the destination system. This is helpful by letting the

attacker know exactly where to go in order to get valuable info.
5. What important information can be gleaned from a WHOIS record for a website?

You are able to get administrative and technical contacts for the website

along with contact numbers, faxes, addresses, the date when the

domain was registered, and the expiration date.

6. How many different WHOIS profiles are pre-loaded in the Sam Spade utility?

3
Perform Data Gathering and Footprinting on a Targeted Website

100

7. Is Sam Spade an intrusive tool? What is your perspective on the use of a freeware utility such as Sam

Spade?

Not it is not intrusive. Sam Spade is just a security tool.

40

LAB #3 | Perform Data Gathering and Footprinting on a Targeted Website
8. What do you think companies and organizations should do with regard to access to WHOIS information

in the public domain?

The companies and organizations can opt out of displaying information

that can invite attackers into their systems in the future. They could

also use the information to get contact information from other

companies.

9. What icon or function in Sam Spade downloads the entire HTML code of the targeted website?

The web browsing tool in Sam Spade downloads he entire HTML code of

the targeted website.

10. Why would someone use a proxy to perform data gathering from a remote website?

Someone would use a proxy to perform data gathering from a remote

website because it will make it harder to track who the attacker is.

11. If you wanted to find out if a person has been arrested or has a court date for anything specific, what

information would you need to Google?

You would need to Google the county-clerk's office to where the person may

have committed an offense and all legal information such as arrest and court dates will be displayed.

12. How can you estimate the number of employees who work in an organization’s remote office or facility?

You may be able to find the information online, if not, you can call and try to

see if the people at the company will provide the information for you.
Another way is through educated guessing based on how many floors,

how many buildings, and how large the buildings are.

Assessment Worksheet
13. What is the goal when trying to use a search engine for data gathering or footprinting?

41

The goal is to learn about all aspects of an organization's security, their intranet

set up, remote access capabilities, and the intranet/extranet presence.

As an organization, you can hire someone to try and find all the weakness and report them to you to further strengthen the security of your company.
14. What is Google hacking?

It is a computer hacking technique that uses the Google search bar and other

Google applications in order to find security issues in the configuration and computer code that websites use.

15. What is the Google Hacking Database (GHDB)?

It is an authoritative source for querying the Google search engine. It allows

direct mapping which lets penetration testers to quickly determine whether a website has a public available exploit.

3
Perform Data Gathering and Footprinting on a Targeted Website

Similar Documents

Lab7

Bios105-Lab7

Lab7 Wide Area Networks

Boolean

Auditing

Music

Biology

Popular Essays