qWireless Pen Testing section including toolkit, CVE references, white papers etc. extensive input from Matt Byrne atWirelessDefence.org
qAS/400 section including toolkit, CVE references etc. courtesy of Nabil OUCHN,Security-Database.com co-founder
qVoIP Section including toolkit, CVE references, white papers etc. (Kev)
qBlueTooth Section including toolkit, CVE references, white papers etc. (Kev)
qCisco Section including toolkit, CVE references, white papers etc. (Lee)
qNumerous Changes throughout.
qBroken URL's fixed.
Network Footprinting (Reconnaissance) The tester would attempt to gather as much information as possible about the selected network. Reconnaissance can take
two forms i.e. active and passive. A passive attack is always the best starting point as this would normally defeat intrusion detection systems and other forms of
protection etc. afforded to the network. This would usually involve trying to discover publicly available information by utilising a web browser and visiting
newsgroups etc. An active form would be more intrusive and may show up in audit logs and may take the form of an attempted DNS zone transfer or a social
engineering type of attack.
IANA - Internet Assigned Numbers Authority
ICANN - Internet Corporation for Assigned Names and Numbers.
NRO - Number Resource Organisation
ARIN - American Registry for Internet Numbers
LACNIC - Latin America & Caribbean Network Information Centre
RIPE - Reseaux IP Europ?ns?Network Coordination Centre
Domain Research Tool
Firefox AS Number Plugin
Ebay - profiles etc.
EDGAR - Company information, including real-time filings. US
Google Finance - General Finance Portal
Hoovers - Business Intelligence, Insight and Results. US and UK
Companies House UK
Land Registry UK
411 - Online White Pages and Yellow Pages. US
Abika - Background Check, Phone Number Lookup, Trace email, Criminal record, Find People, cell phone number search, License Plate
Zabasearch - People Search Engine. US
192.com - Electoral Role Search. UK
Back end files
Types of Information Records
SOA Records - Indicates the server that has authority for the domain.
MX Records - List of a host?s or domain?s mail exchanger server(s).
NS Records - List of a host?s or domain?s name server(s).
A Records - An address record that allows a computer name to be translated to an IP address. Each computer has to have this record for its IP
address to be located via DNS.
This action might not be possible to undo. Are you sure you want to continue?