CISSP/ISSMP/ISSAP/ISSEP,CCSP,CSSLP,CISM,PMP,CBAP
- OSINT through World Wide Web
- Find Domain and Sub-domains of the target
- Find the Similar or Parallel Domain Names
- Refine Your Web Searches using Advanced Operators
- Footprint the Target using Shodan
- Find the Geographic Location of a Company
- List Employees and their Email Addresses
- Identify the Key Email Addresses through Email Harvesting
- List Key Personnel of the Company
- Use People Search Online Services to Collect the Information
- Browse Social Network Websites to Find Information about the Company and Employees
- Use the Web Investigation Tools to Extract Sensitive Data about the Company
- Identify the Type of Network Devices used in Organization
- Look for the Sensitive Information in Email Headers
- Look for Valuable Information in the NNTP USENET Newsgroups
- OSINT through Website Analysis
- OSINT through DNS Interrogation
- whois (apt install whois)
- nmap -sn –script whois-* sample-domain.com
- Automating your OSINT Effort using Tools/Frameworks/Scripts
- Maltego
- FOCA (Fingerprinting Organizations with Collected Archives)
- fsociety (github)
- pentmenu
Like this:
Like Loading...
Related