[0:00]Hello everyone. Here we are going to talk about our next module, that is we are having as your footprinting, which is we are also calling it as the reconnaissance or we can call it as the information gathering. All right. So, as we have previously discussed about the footprinting. Footprinting is what? It is the very first step we are having, or the very first phase we are having, in which the attackers they will be going ahead and they will be trying to gather as much information as they can about the victim. Now, when they will be gathering the information, we will be having the two different methods, or we can say, we are having the types of your footprinting, we can say reconnaissance or the information gathering. In which we are having as the active footprinting and we are having as the passive footprinting. Now, over here, guys, in this module, we are going to talk about how we are performing the footprinting. What are the methods we are having, what are the tools we are having that will be helping us to perform the footprinting over there. Now, over here, on the basis of that, here we are having the first one as the active footprinting. Right. So, in this active footprinting, what will be happening is the attackers they will be going ahead, they will be trying to make the direct connection with the victim, and once they will be able to make the direct connection with the victim, the direct interventions we are having, then they will be trying to collect the information. Now, in that way, they will be able to collect more information, but only the issue we are having, only the risk we are having, that the number of chances of getting caught, it will be also getting increased. Now, in that particular scenario, we are having the next one as the passive footprinting. So, in this particular scenario, we will be trying to collect the information from the OSNT. Right, we will be gathering the information using your OSINT, that is we call as the open source intelligence. Means that without directly confronting with our victim, we will be able to collect their information and on the basis of that, when we are talking about this person, we can collect the information about the individual. as well as we can collect the information about an organization. Now, let's say, over here, what I want to do is, I want to collect the information about an individual. Right. So, for that, what will be happening is, the very first thing which I'm going to use, that is going to be your Google. Right. The very first thing which we generally perform over here, whenever we have to find an information about it, we are just simply putting that information in our Google. But if, let's say, I got a target with the name Raj, I will be directly writing Raj in the internet, in the Google, so it will be providing me millions and millions of result. By doing that, it is going to become quite difficult for me to collect that information about that person. Right. That is why, here what we have to do is, we need to narrow down our search area. Now, let's say this is the whole globe we are having. Now, inside of this globe, we will be having millions of people with the same name as Raj. So, we will be performing some footprinting, with the help of that, we will be able to find the information, let's say Raj, he's from India. Now, India is also a very big country, having lakhs of people with the same name. So, again we will be doing footprinting, with the help of that, we will be able to discover, let's say Raj, he's from Andhra Pradesh. Right. So, now Andhra Pradesh, it is also a very big state. Again we will be doing footprinting, then we will be able to discover, from which city, from which district, Raj he is, and then we will be having our own particular target. on whom we want to perform the attack. Right. So, in this whole scenario, what we have done is, previously this was our search area. Now, we are doing footprinting, with the help of that, we have narrowed down our search area and now we are having our particular target. Now, for performing it, when we are using our Google, what we have to do is, we have to use something known as your Google Dorks.
[5:00]Or, it is also known as your Google Hacking. Right. So, in this Google Dorks, what we are having is, we are having like a small cheats and with the help of that, we will be able to collect the specific information. Right. For example, I want to watch a movie, right, and for that, the movie I want to watch, that is we are having like your Malik. Right. So, for that, I will be writing like movie, I will be specifying the movie name we are having, that is we are having as your Malik. Now, after that, I will be also specifying like from which site they have to collect that information. That is we are having site drive.google.com. I want to just find that information about that particular movie from the Google Drive over there. Now, if anyone who has uploaded that particular movie in the Google Drive and he has also made that particular file as your publicly available. So, with the help of that, we will be able to just discover the information about the pages that are present. Right. Now, for example, if I will be going ahead and here I will be searching for it.
[6:22]Like movie Malik. I will be hitting enter and with the help of that, you guys will be finding that we are having a lot of result. But I want to just download it. So, I will be writing movie Malik site drive.google.com. I will be hitting enter. If they are having any related results with that, so you will be able to discover the information about it. Now, this time we are just having the two results that are present. Now, if you guys want to look more about the Google Dorks, then what we are having is, we are having the Google Hacking Database that is present inside of your Exploit DB. With the help of that, we will be getting a lot of Google Dorks, a lot of cheats that will be helping us to collect a specific information about our target. Right. Whether you want to discover the information about the juicy data, like username or password, whether you guys want to look into the login platforms, whether you guys want to look for the information about the vulnerable servers, right, you are looking for some files, some metadata, and many more. So, in all those areas, what will be happening is, this Google Hacking Database, it will be helping us to perform our task. Now, after that, over here, when we are talking about collecting the information about your individual. What we can do is, we can use the multiple platforms while we are trying to collect the info about the individual. Like the very first thing that we can use, the social sites. See, guys, over here, nowadays, what is happening is, we are posting each and everything about us on the social media. Right. If you are visiting any city, if you are visiting our neighbors, if you are getting graduated, or anything which we are doing, what we are doing is, everything is getting posted in the internet. In our social sites. Now, because of that, what will be happening is, if a person wants to collect the information, if a person wants to monitor our activity, then from that particular location, they will be able to perform it. Right. They will be able to collect all those information from a single source. Right. So, for that, let me try to look for a video we are having.
[9:27]Okay. I guess I will be opening my YouTube itself, so that I will be able to see that specific video we are having. With the help of that, I will be able to discover, like simply this, just going to show us the information. If we are posting everything in the internet, how the attackers they can utilize it, with the help of that, they will be able to take the advantage. So, just give me a minute, let me look for that video, so that I will be able to show you.
[11:05]All right. No, I guess I'm not able to discover it. No worries. Later on I will be able to show you. Right. Might be the author, they have just changed the location or something like that. And because of that, now I'm not able to see that video. So, simply it was just showcasing us, if you are posting each and everything about us on the internet, the attackers they will be able to quickly track our all activities. Whether we are talking about your graduation, whether we are talking about the certificates, so that is why what we have to do is, whenever we are posting anything about us on the social media, we have to be mindful, like what are the things we can post and what are the things we shouldn't be posting over there. Right, on the perspective of your cyber security. Right. Now, if you are having a victim and they're posting everything on the social media platform, so with the help of the social sites, they will be able to collect that information. We are also having the matrimonial sites, right. See guys, many a time our parents, they're making our account on the matrimonial sites, and on those location, they're going to post each and everything about us. From our skin color to your salary, we are getting, the package we are getting, and each and every thing. So, that is why there can be also chance that the attacker, they will be able to find the information from the matrimonial sites. Right. Then after that, we are also having the job profiles. We are uploading our resumes in the platforms like we are having a no.com, right, the job seekers and many more. Now, if a docker in some platform like whether we are talking about your LinkedIn or any platform, they will be impersonating like a employer. So, because of that, they will be able to collect all the resumes we are having and with the help of that, they will be able to take the advantage.
[13:08]They will be able to gain the access of our account. Right. They will be able to discover all the information about us, right. From your hobbies, from your, we can say, uh from your hobbies, right, as well as our qualification, right, as well as our past experience, our skill sets, and many more. Right. Then after that, we can also collect the information about the victims, right, from the platforms like we are having as the Spoo, we are having as the PIPL, right, and many more. So, these are what? These are like the people search engine we are having. With the help of that, we will be able to find the information about the victim, right. So, in these platform, we might be able to find some free platforms as well as we will be able we will be getting some paid platforms. So, we need to look for them, right. Now, with the help of that, these platforms, they will be scrolling through the multiple platforms we are having like your Facebook, LinkedIn, right, all the social media platforms. And from there, if they will be finding any information about us, they will be collecting it and on a single location, they will be able to provide all those information in a single stream. Right. So, with the help of that, we will be able to find the information about it. Then after that, we can also collect the information about the individuals, male address, like we are having the websites like your snow. That will be going ahead, that will be providing us the information like what is the email address we are having of the victim and many more. So, these were what, these were some examples about the individual, like how we will be able to collect the information about an individual. Now, over here, we can also collect the information about an organization.
[15:27]So, when we are trying to collect the information about the organization, we can use the Wikipedia, right. As well as we can use the website of the organization itself. Then we can also collect the information from the ex-employees. Right. We can also look for the malicious insiders, or I can say, simply as the disgruntled employee.
[16:08]Right. Then we can also find the information about the email address with the help of the snow. We are having the tool like your the Harvester. Right. And many more. So, with the help of these tools, what will be happening is, we will be also able to find the information about the organization as well as the individual. Now, with the help of that, we will be able to discover the information about the network range, the IP address, the email address, their PII, which we call as the personal identifiable information, right, the domain names we are having. Might be we will be able to discover the information about the credentials and many more. So, guys, these are some different, different methods with the help of that, we will be able to collect the information. Now, on the basis of that, here we are having something known as your OSINT. Right, which stands for the open source intelligence framework. Now, by utilizing this OSINT framework, what will be happening is, it will be providing us the collection of of the tools.
[17:44]Which we can utilize with the help of that, we will be able to perform them for the different, different types of activities. Right. Whether we are talking about the dark web, whether we are talking about the email address, whether we are talking about the website information and many more. So, everything it can be achieved, right, almost with the help of that. Now, over here, it is taking a bit amount of time. Now, till the time, guys, what I'm showcasing you, we are having like the Kali. So, later on I will be also providing you the platform, like how we will be able to download this VMware, and how we will be able to get these type of machine inside of it. So, with the help of that, we will be also able to build the same type of platform like me. So, the very first thing which I'm posting over here, that is I'm writing as the IFCONFIG. So, using that, I will be able to see the network information I'm having. Now, guys, here I'm able to see that my Kali Linux, it is working fine without any type of issues. Right. Now, in this particular scenario, let's me show you the tool we are having with the name of your the Harvester. Right. Okay, I'm just directly instead of writing the command, I'm writing hyphen, hyphen, hello. So, we are having the tool with the name of your the Harvester. It is a great tool we are having that will be helping us to collect the information about a company or a domain we are having. Now, for that, I will be writing the Harvester hyphen D. Let's say the target I'm providing is the tesla.com. Hyphen B that is we are having for the source. Now, in that, I will be writing as your all. Now, over here, guys, these are the sources through which your tool, it will be collecting the information for you guys. Right. And I have written hyphen D, that is for the domain of your target. Now, after that, we can just hit enter. And right now, if you guys are getting this type of error, that is talking about missing the API key, let's say, since all these platforms, there are the good platforms we are having. So, if we want that our Harvester, it will be able to thoroughly able to collect the information with the help of them. Then you have to provide the API key of those platforms. In my case, I have given the API key of some of the platform, and then it will be trying to provide us the information about it. Now, the Harvester, it is going to take a bit amount of time before showing us the result. So, let's wait for it and let's see what are the information we are getting from here.
[30:45]All right. Now, you guys can see our Harvester, it is still giving us error. A lot of time it happens, like some of the functions they are not working, but still it was able to discover the information about some locations we are having, some interesting locations, which we can use over there for our target basis.
[31:16]And you guys will be providing the APIs, then you will be able to find a more total number of hosts that are discovered that is at 2003. Right. And our SNOV, it was just providing us with three mail addresses, but from here, we are able to see the information about the 21 email addresses that are placed over there. Because right here we are able to see the information about the 21 email addresses that are placed over there. Right. And our SNOV, it was just providing us with three mail addresses, but from here, we are able to see the information about the 21 email addresses that are placed over there.
