CEHv8 BOOTCAMP: MODULE 02-FOOTPRINTING AND RECONNAISSANCE_SET-3 Flashcards
Describe a “RP” record.
Responsible person.
Describe a “HINFO” record.
Host information record includes CPU type and OS.
Describe a “TXT” record.
Unstructured text records.
How can obtaining network range information assist an attacker?
To create a map of the target’s network.
How do traceroute programs work?
On the concept of ICMP protocol and use the TTL field in the header of ICMP packets to discover the routers on the path to a target host.
Why do attackers use traceroute?
To extract information about: network topology, trusted routers, and firewall location.
What is Social Engineering?
The art of convincing people to reveal confidential information.
What are 4 techniques used by social engineers?
- Eavesdropping
- Shoulder surfing
- Dumpster diving
- Impersonation on social networking sites
What are some things that social engineers attempt to gather?
- Credit Card details and social security numbers
- User names and passwords
- Other personal information
- Security products in use
- Operating systems and software versions
- Network layout information
- IP addresses and names of servers
What is Eavesdropping?
Unauthorized listening of conversations or reading of messages.
What is Shoulder Surfing?
The procedure where the attackers look over the user’s shoulder to gain critical information.
What is Dumpster Diving?
Looking for treasure in someone else’s trash.
How do attackers use social networking sites lure employees into giving up sensitive information?
By creating fake profiles on social networking sites and then use the false identity to lure the employees to give up their sensitive information.
What is Maltego?
A program that can be used to determine the relationships and real world links between people, groups of people (social networks), companies, organizations, websites, Internet infrastructure, phrases, documents, and files.
What can you do with the Footprinting tool Web Data Extractor?
Extract targeted company contact data (email, phone, fax) from web for responsible b2b communication.