Scribd Logo
Upload

Welcome to Scribd!

  • IISF Assign2

    Uploaded by

    Anas
    2 views2 pages
    This document contains an assignment for an introduction to information security and forensics course. It includes 3 questions: 1. Listen to at least 5 vishing attack recordings to understand common tricks and messages used. Suggest steps to help users resist these attacks and list the recording serial numbers listened to. 2. Research advanced Google search operators and use at least 5 to create potential "Google dorking" searches. Try the searches and discuss how easy it is for threats to use Google dorking and how users and organizations can combat it. 3. Visit an online cipher tools website and experiment with 3 different tools selected by each student. Analyze which is easy to use, more difficult, and most

    Original Description:

    Original Title

    IISF-Assign2

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document contains an assignment for an introduction to information security and forensics course. It includes 3 questions: 1. Listen to at least 5 vishing attack recordings to understand common tricks and messages used. Suggest steps to help users resist these attacks and list the recording serial numbers listened to. 2. Research advanced Google search operators and use at least 5 to create potential "Google dorking" searches. Try the searches and discuss how easy it is for threats to use Google dorking and how users and organizations can combat it. 3. Visit an online cipher tools website and experiment with 3 different tools selected by each student. Analyze which is easy to use, more difficult, and most

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    2 views2 pages

    IISF Assign2

    Uploaded by

    Anas
    This document contains an assignment for an introduction to information security and forensics course. It includes 3 questions: 1. Listen to at least 5 vishing attack recordings to understand common tricks and messages used. Suggest steps to help users resist these attacks and list the recording serial numbers listened to. 2. Research advanced Google search operators and use at least 5 to create potential "Google dorking" searches. Try the searches and discuss how easy it is for threats to use Google dorking and how users and organizations can combat it. 3. Visit an online cipher tools website and experiment with 3 different tools selected by each student. Analyze which is easy to use, more difficult, and most

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 2

    Capital University of Science and Technology

    Department of Computer Science


    CS 3713- Introduction to Information Security & Forensics
    ASSIGNMENT NO. 2
    Semester: Fall 2023 Max Marks: 10
    Instructor: Fahim Shahzad
    Assigned Date: 27/Oct/2023 Due Date:
    03/Nov/2023
    Name: Reg. No.
    (Note: This is a group assignment. One solved assignment needs to be submitted by a
    group of 3 students)
    Question No. 1.

    Visit the online SoundCloud repository by NumberCop that contains several different recordings
    of vishing attacks (soundcloud.com/numbercop). Listen to at least 5 of these recordings.
    Understand what attackers typically ask and how they craft their attacks, what messages do the
    attackers commonly use? How do they trick users into entering their information? What social
    engineering effectiveness reasons do they use?
    Write a series of steps that would help users resist these attacks.
    (Write down the serial numbers of vishing recordings that you listened to)

    Question No. 2.

    Use the Internet to determine how the following advanced Google search engine operators are
    used:

    allintext, allintitle, allinurl, cache, filetype, inanchor, intest, intitle, link, site, +, |, and *

    Then, use at least five of these operators to create potential Google dorking searches. Finally, try
    out your searches to see if they are effective. How easy is it for a threat actor to use Google
    dorking? How can users and organizations combat this?
    List your Google dorking searches, results, and the defenses that should be used against it.

    Question No. 3.

    Visit the website Cipher Tools (rumkin.com/tools/cipher/) and explore the tools. Select any three
    tools (one for each student in the group). Experiment with the three different cipher tools. Which
    is easy to use? Which is more difficult? Which tool would you justify to be more secure than the
    others? Why?
    Write a one-page answer on your analysis of the selected tools.

    Introduction to Information Security & Forensics Page 1 of 2


    Introduction to Information Security & Forensics Page 2 of 2

    You might also like