TP CH SECURITY365 S 6

Foot Printing
www.security365.vn

Security365 ALL IN ONE - T Zero Tr Thnh Hero !

Sau mt thi gian ch i, nay Tp ch Security365 S 6 ra mt bn c vi ch Foot Printing thuc Module 2 ca chng trnh o to bo mt nt ting CEH do ECCOUNCIL trin khai. Nay vi phin bn mi CEH v7 mang tnh thc tin v ng dng nhiu hn. Nu cc bn yu thch mn bo mt thng tin ni chung hay CEH ni ring th c th thy s thay i mang tnh tt hu ny ca CEH v7. V t 22 module trong phin bn CEH v5 v qua phin bn CEH v6 vi s lng khng hn 60 module nhng ch yu mang tnh l thuyt v km hp dn, chnh v vy trong phin bn mi ca mnh ECCOUNCIL tr li ch vi 19 ch nhng s lng cc bi thc hnh hay hng dn li tng ln gp nhiu ln, vi hn 1000 bi lab t Foot Printing cho n Pentration Test. V cp nht kin thc cho cc hc vin hay thnh vin ca chng trnh o to hacker m trng theo phin bn CEH v7 Security365 cung cp hn 1000 bi lab ny cho kha hc c nhiu ngi yu thch nht SCEH. V nu cc bn tht mt ti sao s lng lab ca CEH v7 hay cc phin bn trc y c kh nhiu nhng a phn ch trnh by tng quan m khng i chi tit th bi v ngha chnh xc ca t hacker l nhm xc nh mt ngi am m v thch t tm ti, khm ph tch ly kin thc cho chnh mnh v y cng l bn cht ca t education . Cho nn chng trnh tp trung cung cp mt nn mng vng chc cc bn xy ln nhng tng cao ca kin thc. Nhng ni nh vy khng phi CEH ch cho cc bn ci nga xem hoa m hng dn cc bn kh cn k, mt ngi t Zero c th tr thnh Hero ! V vy, trong s 6 ca Tp Ch Security365 chng ta s cng tho lun v ch Foot Pritning v cc cng c thng dng trong lnh vc ny. download cc s 1,2,3,4,5 ca Tp Ch Security365 cc bn hy truy cp link sau: http://www.security365.vn v menu Tp Ch Hoc download trc tip t mediafire theo link sau : S 1 - http://www.mediafire.com/file/urjrq4bahu5xhoy/Tap_Chi_Security365_So_1.pdf S 2 - http://www.mediafire.com/file/b53vg3nnf5nnnpr/Tap_Chi_Security365_So_2.pdf S 3 - http://www.mediafire.com/file/0sk47esjomuqqrh/Tap_Chi_Security365_So_3.pdf S 4 - http://www.mediafire.com/file/cfce7micptsghc5/Tap_Chi_Security365_So_4.pdf S 5 - http://www.mediafire.com/file/cm1922ij21v151w/Tap_Chi_Security365_So_5.pdf Download cng c thc hnh Foot Pritning ti : http://www.mediafire.com/?fm5305038p370

BBT Tp Ch Security365
ng gp bi v, video cc bn hy gi v a ch email banbientap@security365.vn

Footprinting L G !
Download cng c thc hnh Foot Pritning ti : http://www.mediafire.com/?fm5305038p370 www.security365.vn

Trc tin, cc bn cn hiu khi nim Reconnaissance ! y l qu trnh thu thp cng nhiu thng tin cng tt v mt mc tiu cn tn cng hay khai thc, c th l mt trang web hay mt h thng my ch, router . Qu trnh ny bao gm 3 bc l Footprinting, Scanning (qut li mt h thng t bn trong hay bn ngai) v Enumeration, y l 3 bc pre-attack ca mt hacker m chng ta cn nh k cho k thi CEH cng nh qu trnh thc hnh penetration test. Trong Footprinting l tin trnh u tin dng thu thp cc thng tin cn thit ca mt t chc thng qua cc c s d liu cng khai nh cc thng tin v tn min ca t chc, danh bn in thai, cc trang vng doanh nghip tm kim a ch, s in thai, a ch email ca cc b phn .v.v. y l bc rt quan trng v cc attacker thng dnh ra n 90% thi gian tin hnh thu thp thng tin, cn qu trnh tn cng ch din ra trong 10% trong ton b qu trnh. iu ny cng ging nh bc chun b khi chng ta cn tin hnh trin khai mt cng vic no trong qu trnh kinh doanh hay pht trin tng mi. Ging nh khi x th cn tiu dit mt mc tiu th cc cng an m anh ta cn tin hnh l : Xc nh mc tiu, Nhm/Nhm cho tht k & Bn. Trong qu trnh xc nh tm kim mc tiu v nhm bn chim nhiu thi gian nht trong tan b tin trnh.

tin hnh thu thp thng tin mt cch khoa hc, cc hacker/attacker cn thc hin theo mt s nh sau:

1. 2.
3. 4. 5. 6. 7.

Tm kim t cc ngun thng tin. Xc nh cc dy a ch mng.

Xc nh cc my cn hat ng Tm kim nhng port m (open port) hay im truy cp ca mc tiu (access point) D tm h iu hnh ca mc tiu. Tm kim cc dch v ang hat ng trn nhng port m. Lp m hnh mng.

Trong 7 bc trn th bc 1 v 2 chinh l tin trnh Footprinting, cc bc cn li thuc giai an scanning v enumeration. Tip theo chng ta s i vo phn tch chi tit cc bc trn v nhng thao tc k thut cn tin hnh. Trong cng an u tin cc bn cn tn dng cc ngun ti nguyn

Thng tin tm kim:

Domain name.

V tr. Thng tin lin lc (Telephone / mail)

Cc ngun thng tin:

Open source : Cc ngun ti nguyn m l nhng d liu cng khai nh trang vng doanh nghip, danh bn in thai. Whois Nslookup

Hacking Tool:
Sam Spade, Visual Route, 3D Trace, Email Tracker Pro, Network-Tool

Trong qu trnh ny cng c tm kim Google lun l la chn s 1 ca cc attacker. Rt nhiu ngun ti liu sp xp Google l mt trong nhng cng c hacking hng u ca cc hacker v thm ch c c mt ti liu hng dn s dng Google tin Hacking gi l Google Hacke ca Jonhny ti trang web http://johnny.ihackstuff.com/

Internal URL : khi bit c tn domain ca cng ty, hacker c th tm ra cc my ch bn trong h thng bng cch an nhng tn my ch thng dng nh mail.domainname.com, hay www.domainname.com
Khc vi cc hnh thc thu thp thng tin trc tip th phng php thu thp thng tin b ng (Passive Information Gathering) cng rt c a chung. Passive Information Gathering l bin php tm kim thng tin v mc tiu t cc ngun d liu min ph trn Internet thay v lin h trc tip vi cc nhn vin hay ngi dng ca t chc. V d mt s trng hp thng tin cung cung trn web site khng p ng c yu cu cc hacker c th s dng tnh nng Way Back Machine ca trang web http://www.archive.org/index.php Ngai ra, c mt s trang web cung cp cc thng tin c nhn nh http://people.yahoo.com hay tm kim trn nhng trang tuyn dng nh Vietnamworks.Com hoc cc trang tuyn dng quc t. Trong cc video hng dn thc hnh cc bn s thy Ceh v7 s dng nhng trang tm kim thng tin c nhn mi nh Best People Search, AnyWho v nhiu website khc. Bn cnh , cc hacker cn c th s dng nhng tin ch cung cp bn trc tuyn nh Google Map hay Intelius.Com tm kim v tr ca c nhn hay t chc. Chng ta cng tng nghe nguy c cc t chc khng b quc t s dng cc cng c ny xc nh v tr tn cng trong hay hang gia Brunei b thn dn ca mnh s dng Google Earth pht hin s t ai m h chim gi. Trong khi san bi vit ny ti qun Caf New Si Gn trn ng Nguyn Vn Linh Q7 , TpHCM cc nh u c t ai mn my ca ti tm kim v gii thu cho khch hng cc l t bng cch s dng tin ch www.wikimapia.org , c l v s dng iphone hnh nh hi nh !

Tip theo chng ta s tm hiu v s dng cc cng c phc v cho mc ch thu thp thng tin nh Whois hay Smart Whois trong qu trnh tm kim cc thng tin lin quan n domain name. Tm v xc nh ng i n mt trang web hay my ch bng NeoTrace, Visual Route hay 3D Trace Route. Tm kim cc a ch email theo ch hay domain name bng 1- eMail Address Spider, xc nh ngun gc v ni gi email vi emailTrackerpro, s dng MetaSearch Katoo Online Tool v nhiu cng c khc.

Hnh minh ha : S 0 khi ng mt mnh s khng c ngha g c, nhng khi c kt hp vi nhng con s khc s lm tng gi tr gp hng chc n hng trm ln! Trong vai tr qun tr hay bo mt h thng cc bn cn bit cch tn dng sc mnh ca nhng cng c khc nhau, cc ngun thng tin tng hp gip cho cng vic ca mnh t hiu qu cao nht.

Footprinting : Competitive Intelligence Gathering

L phng php thu thp thng tin t cc ngun nh Internet v mt cng ty hay t chc no . Competitive Intelligence c th l sn phm hay mt tin trnh v d nh cc hnh ng thu thp v phn tch d liu, xc nhn thng tin. Nhng cng c thng c s dng cho qu trnh Footprinting : Competitive Intelligence Gathering nh : Whois ARIN Nslookup Neo Trace VisualRoute Trace SmartWhois VisualLookout eMailTrackerPro

Whois l cng c (nh SmartWhois) hay tin ch online www.whois.net dng thu thp thng tin lin quan n mt tn min no bao gm ni hosting ca website, tn v a ch lin lc ca ngi qun tr, a ch IP ca Web Server v cc my ch phn gii tn min DNS nh m t di y:

Lu : thun tin cho qu trnh thc hnh tool Whois c Security365 Wrapping qua menu TOOL.

C s d liu ca Whois c chia lm 4 vng chnh l

ARIN (North America v sub-Saharan Africa) APNIC (Asia Pacific) LACNIC (Southern v Central America v Caribbean) RIPE NCC (Europe v northern Africa) Thng th ARIN Whois Database s c tm kim trc tin, nu khng tm thy thng tin

whois ca mt trang web trong ARIN th c th thng tin ny s c lu gi CSDL ca APNIC, LACNIC hay RIPE NCC. Cc bn c th s dng www.allwhois.com tin hnh tm kim thng tin trn tt c cc co s d liu thuc cc vng khc nhau. Ngai nhng trang web chuyn cung cp nhng dch v whois th c nhiu cng c c th p ng c yu cu ny nh: Sam Spade, Smart Whois, Netscan v GTWhois (Windows XP compatible), www.geektools.com ... Mt s h iu hnh nh Unix, Linux cung cp tin ch Whois tch hp trn h thng v s dng nhng tin ch ny chng ta c th s dng lnh theo c phap nh sau: whois -h hostname identifier v d whois -h whois.arin.net <query string> V d sau l kt qu Whois Google.Com c tm kim t cc c s d liu ca internic.net : Domain Name: GOOGLE.COM Registrar: ALLDOMAINS.COM INC. Whois Server: whois.alldomains.com Referral URL: http://www.alldomains.com Name Server: NS2.GOOGLE.COM Name Server: NS1.GOOGLE.COM Name Server: NS3.GOOGLE.COM Name Server: NS4.GOOGLE.COM Status: REGISTRAR-LOCK Updated Date: 03-oct-2002 Creation Date: 15-sep-1997 Expiration Date: 14-sep-2011

Nslookup
Nslookup l chng trnh truy vn tn min trn Internet ca cc my ch, cc kt qu thu c t Nslookup c th c hacker s dng m phng cu trc DNS ca t chc, tm kim thm cc thng t in b sung v nhng my ch ni b hay thng tin MX record ca mail server.Trn cc h thng Windows hay Linux/Unix u c cng c nslookup km theo. Ngoi ra chng ta c th s dng SamSpade tin hnh nslookup. Ngai vic tm kim cc thng tin v tn min internet ca cc my ch th nslookup cn lmt cng c hu ch cho qu trnh chn an, khc phc v x l cc s c mng lin quan n vn phn gii tn min, truy cp internet ca ngi dng hay kim tra h thng Active directory sau khi ci t... V d sau l kt qu ca tin trnh s dng dng cng c nslookup trn Linux/Unix v my ch cracker.com: $ nslookup Default Server: cracker.com Address: 10.11.122.133 Server 10.12.133.144 Default Server: ns.targetcompany.com Address 10.12.133.144 set type=any ls -d target.com systemA 1DINA 10.12.133.147 1DINHINFO "Exchange MailServer" 1DINMX 10 mail1 geekL 1DINA 10.12.133.151 1DINTXT "RH6.0"

NeoTrace, Visual Route v 3D Trace xc nh tuyn ng i n mt mc tiu. Cc bn tham kho video hng dn cc trang sau.

V d rko l mt hacker v mc tiu ca hacker ny l trang web www.giaiphapantoan.com. Trong qu trnh Footprinting rko tm hiu xem domain giaiphapantoan.com c ng k v qun l bi ngi no, cc thng tin lin quan nh DNS, my ch hosting ca Web site t u, a ch IP l g... tm kim nhng thng tin trn rko s dng tin ch Samspade hay dch v Whois Online nh whois.net nh sau: M trang web www.whois.net hay http://www.security365.vn/index.php?option=com_content&view=category&id=73&Itemid=108 v nhp vo domain name

Tuy nhin, lc ny rko cha bit c nh cung cp trn u v kt ni n trang web www.giaiphapantoan.com cn phi i qua cc trm no (cc hop, hay cn gi l bc nhy). Khi ny anh ta c th s dng n nhng ng dng chuyn v d tm ng nh Neo Trace, Visual Route (y l cc ng dng thng mi) hay dng ng dng d ng min ph nh 3D Traceroute (c th tm v download t trang web www.webattack.com hay kho lu tr cng c trn mediafire ca tp ch qua a ch http://www.mediafire.com/?fm5305038p370 ). Cc ng dng ny s cho chng ta bit chi tit v v tr a l ni hosting trang web, cc thng tin lin quan n ngi ng k domain thng qua cc giao din ha rt d xem.

Lu : Mt s hop s t chi cc kt qu tr v, v d khi firewall c cu hnh t chi tr v kt qu cho lnh Ping nn khi cc yu cu truy cp gi n s khng c tn hiu. Ngai ra, cc ng dng trace route k trn cng rt hu ch cho vic chn an v x l cc s c mng. NeoTrace vi Neo Trace chng ta s d dng bit c cc hop m gi tin s i qua n c ch trn mng internet. Kt qu hin theo dng lit k km theo m hnh minh ha rt d hiu. Trong hnh l kt qu khi ng dng NeoTrace vi Google.Com

Hay vi target l Security365.Biz

Visual Route ng dng ca Visual Software c chc nng tng t nh NeoTrace, bn cnh nhng thng tin v ng i ca gi tin th Visual Route cn thng bo cc hop b li do khng nhn c tn hiu tr v. V d sau khi ci t chng ta chy chng trnh nh minh ha sau

Ngai ra, chng ta c th sng dng Visual Route cng vi nhng ng dng khc ca Visual Software nh d tm email tm kim chuyn su hn. y l mt cng c kh mnh tuy nhin ci t v s dng cc bn cn download v ci t Java Virtual Machine (JVM) ti trang web www.sun.com . M menu Start => Programe => VisualRoute => VisualRoute nh hnh trn chy chng trnh. Sau nhp vo tn domain m bn mun tm hiu nh quantrimang.com vo Address ri nhn enter.

Kt qu tr v ca VisualRoute cho chng ta thy kt ni n my ch ca quantrimang.com cn qua 11 bc nhy (11 hop), nhng hop 3 ti c th c s c rt packet do cc firewall/router khng gi kt qu phn hi, my ch Web s dng Microsoft-IIS/6.0 t ti Australia.

Th nghim thm vi domain Security365.Biz cc bn s thy my ch web ca chng ti s dng Apache/2.0.61 t ti Los Angeles vi cc chc nng h tr nh OpenSSL, mod_ssl. Video hng dn s dng Visual Route km theo tp ch cc trang sau. Lu cc bn cn ci t chng trnh c Acrobat Reader ca Adobe xem cc video hng dn. V d sau l kt qu 3D Traceroute khi thc hin vi www.security365.biz

Thng thng cc cng c trn u km theo nhng tnh nng tm kim thng tin v domain nh dch v Whois. Trong cc cu hi ca CEH Exam cc bn cn gp mt cng c chuyn cho vic tm kim cc thng tin ny l Smart Whois m chng ti c cp phn trn, y l mt ng dng xut sc trong vic thu thp thng tin v ch s hu mt domain name, hay cc thng tin lin quan nh DNS, my ch lu tr trang web...

Kt qu s dng Smart Whois vi target l www.microsft.com

Kt qu s dng Smart Whois vi target l giaiphapantoan.com Fake eMail V eMail Tracker Pro Va qua, trn cc phng tin truyn thng chng ta c c c thng tin tin s L ng Doanh b cc t chc ti phm Internet ca Nigeria li dng gi th la o n cc email trong danh sch contact nh h tr 2500 $.

Trong tnh hung trn c th hp mail ca TS Doanh b hacker nh cp. Tuy nhin trong mt s trng hp cc hacker c th tin hnh gi cc email gi mo bng cch s dng nhng chng trnh gi mail nc danh vi a ch reply l ca hacker. Hoc c th to ra mt a ch email gi mo l LDANGD0ANH@HOTMAIL.COM trong thay i ch O thnh s 0 rt d lm chng ta nhm ln. V vy xc nhn ngun gc ca cc a ch email nu chng ta c th s dng eMail Tracker Pro v phn tch email header bit chnh xc cc email trn n t u nh video hng dn.

Sau y l mt bi lab nh cc bn c nn th nghim :

S dng ReadNotify: Bn cn gi mt email quan trng cho i tc, v bn mun chc chn rng khi no ngi nhn c c email trn. Hy s dng tin ch ReadNotify !

V gi mt email n AskTheGuider@Gmail.Com Lu : Mt s domain trong qu trnh minh ha chng ti khng cn s dng nn cc bn c th linh ng thay th bng cc domain khc nh Security365.VN hay HocTrucTuyen.Org Sau y l video mnh ha cc s dng cc cng c c gii thiu trong bi vit. y l mt trong s cc video c cung cp cho kha hc CEH v7 vi hn 1000 demo / minh ha / bi ging ca Security365. Cc bn c th tham kho v chng trnh o to Ceh v7 v thng tin khuyn mi khi ng k hc qua v in t Ngn Lng ti a ch : http://www.hoctructuyen.org/index.php/security365-all-in-1/khuyn-mai-ngan-lng.html Ngoi ra, cc bn c th t mua lab v ti liu t hc v n tp vi chi ph tit kim : http://www.hoctructuyen.org/index.php/security365-all-in-1/niscourse.html

Video Hng Dn Thc Hnh

Cng c : http://www.mediafire.com/?fm5305038p370 (v mt s l do bt kh khng cc tool hay link c th b xa bi mediafire, trong trng hp ny cc bn ch cn lin h BQT nhn link download mi)

Trace Route
Traceroute l qu trnh d tm tuyn ng c nh tuyn n mc mc tiu no l website hay host trn mi trng internet. C l cc bn cn nh dng lnh traceroute kh ni ting ca Windows v c cp nhiu trong cc cu hi ca k thi CEH hay cc chng ch ca Microsoft, v c th trace c mt host trn mng chng ta cn phi bt thm chc nng to Resever lookup zone cho DNS server ca mnh. y l mt trong nhng s c thng c hi trong k thi ly cc MCP v qun tr mng. Quay li vi ch traceroute trong tin trnh foot printing cc bn c th s dng cc chng trnh nh Visual Route m cc phin bn CEH trc y thng hi trong k thi chnh thc ca mnh khi yu cu xc nh mt cng c traceroute, tuy nhin ngay c vo thi gian ny th ti vn thch s dng v hng dn hc vin dng chng trnh min ph l 3D Trace, vo lc th 3D Trace min ph 100 %, v ti thng ti v qua trang web www.webattack.com. C l v vy m trong phin bn mi CEH gii thiu 3D Trace nh l ng dng u tin trong cc bi lab ca mnh. Bn cnh th Visual Route vn l ci tn quen thuc, do tnh hiu qu v hin th thng tin v mc tiu kh chi tit. Nhng nu cc bn cha ci t hay mun s dng mt tin ch online th c th dng WatchMouse, mt chuyn trang v traceroute, ping v phn tch DNS kh mnh m m chng ti c tch hp sn trong phn cng c Menu TOOL => TraceRoute.

Domain
Vic xc nh thng tin lin quan n domain cng l thao tc quan trng trong tin trnh FootPrinting, vi nhng cng c online kh mnh m nh CheckDNS.NET dng kim tra cu hnh DNS ca mt domain hay kim tra qu trnh gi thong ip hello n mail server c hon tt hay khng. Trong thi gian qun tr h thng mail server cho c quan ti thng hay dng ng dng ny cho vic kim tra DNS cho domain ca t chc, nhng thi gian gn y vic truy cp vo a ch website ny i khi hay trc trc, khng r nguyn nhn do nh cung cp hay l mt dng facebook khc , nhng khng sao v ng dng thay th Network-Tool.Com m chng ti c tch hp trong cng c TOOL => Network Tool thay th vi tro mt cch xut sc. Bn cnh nhng ng dng kim tra DNS th cc website nh Whois.Net hay Better Whois c dng xc nh ch s hu ca tn min kh hiu qu, nhng nu cc bn mun kim tra ch s hu ca tn min Vit Nam nh Security365.VN th cc ng dng trn hon ton p tay v chng khng lu tr d liu ca nhng domain ny. Cho nn ch cn cch l vo a ch www.tenmien.vn , c iu cc bn hon ton yn tm v k thi CEH chc chn khng c cu hi no v vic tm kim cc tn min loi ny, nhng nu mun tm kim thong tin ch s hu ca nhng domain khc.com, .ney. .org th cc bn cng cn linh ng m tm kim. V d nh tn min .us th phi vo trang whois.us Ngoi vic tm kim thong tin tn min, DNS th trong CEH v7 c cp v vic tm kim nh danh ca mt c nhn no M hay mt s quc gia Chu u c h tr qua cc ng dng tm kim nh AnyWho, Best People Search Ti cng thy hi l l ti sao CEH khng a vo ng dng tm kim bn i nh Adult Friend Finder v vi nhiu ngi hn n c ch hn Any Who gp bi ln

Email Tracker PRO

Cc bn c th tham kho thm cc video cn li ca Module Footprinting ti website www.security365.vn hay trn knh dongduongict Youtube.Com. Chc cc bn thc hnh thnh cng ! Hn gp li cc bn trong chuyn Security365 S 7 vi ch Scanning v cc th thut an ton thng tin hay funny hack..