Hacking 1

microloft.co.uk

HACKING

Footprinting
Scanning
Enumerate
Penetrate
Escalate
Pillage
Interactive
Influence
Tracks

Wireless Hacking
NetStumbler
Wireless Router Defaults

FOOTPRINTING (Gathering Information)

Review Publicly Available Information

Company web pages
Source Sifting (website review)
SEC Edgar database
Business information sites
News groups
www.netcraft.com
Search engines
Big Brother

WHOIS Enumeration

www.icann.org / www.iana.org
whois.iana.org (domain lookups)
www.arin.net (number lookups)
Find the registry, then the registrar, then the registrant

DNS Enumeration

Forward nslookup	nslookup hostname
Reverse nslookup	nslookup ip_address
Zone Transfer	#nslookup >server dns_ip_address >set type=any >ls -d target_domain >exit

Network Reconnaissance

Traceroute

UNIX	Traceroute (UDP)	traceroute hostname/ip
UNIX	Traceroute (ICMP)	traceroute -I hostname/ip
Windows	Tracert (ICMP)	tracert hostname/ip
Windows	Trout or NeoTrace (ICMP)	Trout or NeoTrace (GUI)
UNIX	tcptraceroute (TCP)	(see man page)

BGP Queries

www.arin.net (find target's AS number)
neptune.dti.ad.jp (query BGP via web)