Information / Intelligence Gathering.
This post is going to be about information gathering. Its one of the important things. You want to know what you are going up against.
Information about location, building, and etc...
Google Maps and Google streets.(1)
Local government office might have building blueprints.
Network(IP, AP, Servers, Software, OS's, and etc...) Information
WiGLE//great resource, has map of wireless AP's(2)
Network-Tools.com//ping, traceroute, and other stuff.(3)
Geobytes IP Locatior//shows location, and other things about the location(4)
DNSStuff//just what it sounds line(5)
Geektools//hotspot list(not good as WiGLE), Traceroute, Whois(6)
Robtex//Lots of tools on there(7)
Traceroute.org//you can traceroute from different places.(
NetCraft//Finds information about the server(9)
SamSpade//whois(10)
dnssy.com//dns stuff..(11)
centralops.net//lots of tool on there.(12)
serversniff.de//lots of tools on here too(13)
web-sniffer.net//gets information about webserver(header, etc..)(14)
yougetsignal.com//great things here too.(15)
Maltego//can be used too.(16)
Shodan//good stuff.(26)
Shodan Queries//(28)
FOCA//it searches webz for files(pdfs,docs, etc..) tells you usernames, software names, and other things.(34) Backtrack also has tools included similar to this.
Tools
Nmap, Hping..just download backtrack open menu, go to backtrack > Network Mapping > All. (17)
// You can also use tor with nmap http://pauldotcom.com/2009/08/scanni...r-network.html
Individual(Names, Emails, Social Networks, Phone Numbers, and etc...) Information
White Pages(18) / Yellow Book(19)//
Google(20)
Pipl.com(21)
123People.com(22)
Maltego(16)
tracksomebody.com(23)
Snoopstation.com//free background checks(35)
Information about a company
Google Maps.//It sometimes gives you phone numbers, websites, names, with map.(1)
Job websites.//they want to hire people so they will put some information there, it might be useful when social engineering.
Google.//use your Google-fu(google hacks).(24-25)
Maltego//
Snoopstation.com//free background checks(35)
TheHarvestor//its in backtrack, it gets lots of emails by searching google and other places.
abika//network stuff, and phone and email stuff.
Going to another level
Drive-by//Get kismet or netstumbler running and drive by their building see whats in the air.
Email//Email them, when you get reply check the headers for internal IP.
Parked car in front of the building, and using their wireless//now you can gather information about internal network.
Fake ID(32)//very useful.
Social Engineering(33)//also very useful and good to know.
Organizing
Onenote(27)//Microsoft product, not free.
Evernote(29)//Similar to Onenote, but free and works on everything but Linux
Leo(30-31)//Small program for making outlines.
This post is going to be about information gathering. Its one of the important things. You want to know what you are going up against.
Information about location, building, and etc...
Google Maps and Google streets.(1)
Local government office might have building blueprints.
Network(IP, AP, Servers, Software, OS's, and etc...) Information
WiGLE//great resource, has map of wireless AP's(2)
Network-Tools.com//ping, traceroute, and other stuff.(3)
Geobytes IP Locatior//shows location, and other things about the location(4)
DNSStuff//just what it sounds line(5)
Geektools//hotspot list(not good as WiGLE), Traceroute, Whois(6)
Robtex//Lots of tools on there(7)
Traceroute.org//you can traceroute from different places.(
NetCraft//Finds information about the server(9)
SamSpade//whois(10)
dnssy.com//dns stuff..(11)
centralops.net//lots of tool on there.(12)
serversniff.de//lots of tools on here too(13)
web-sniffer.net//gets information about webserver(header, etc..)(14)
yougetsignal.com//great things here too.(15)
Maltego//can be used too.(16)
Shodan//good stuff.(26)
Shodan Queries//(28)
FOCA//it searches webz for files(pdfs,docs, etc..) tells you usernames, software names, and other things.(34) Backtrack also has tools included similar to this.
Tools
Nmap, Hping..just download backtrack open menu, go to backtrack > Network Mapping > All. (17)
// You can also use tor with nmap http://pauldotcom.com/2009/08/scanni...r-network.html
Individual(Names, Emails, Social Networks, Phone Numbers, and etc...) Information
White Pages(18) / Yellow Book(19)//
Google(20)
Pipl.com(21)
123People.com(22)
Maltego(16)
tracksomebody.com(23)
Snoopstation.com//free background checks(35)
Information about a company
Google Maps.//It sometimes gives you phone numbers, websites, names, with map.(1)
Job websites.//they want to hire people so they will put some information there, it might be useful when social engineering.
Google.//use your Google-fu(google hacks).(24-25)
Maltego//
Snoopstation.com//free background checks(35)
TheHarvestor//its in backtrack, it gets lots of emails by searching google and other places.
abika//network stuff, and phone and email stuff.
Going to another level
Drive-by//Get kismet or netstumbler running and drive by their building see whats in the air.
Email//Email them, when you get reply check the headers for internal IP.
Parked car in front of the building, and using their wireless//now you can gather information about internal network.
Fake ID(32)//very useful.
Social Engineering(33)//also very useful and good to know.
Organizing
Onenote(27)//Microsoft product, not free.
Evernote(29)//Similar to Onenote, but free and works on everything but Linux
Leo(30-31)//Small program for making outlines.