NOTE: Do not share this document with anyone!

First Class Content:

Information Gathering /
footprinting:
To gather the maximum information about your target by enumeration or by the
help of information gathering tools is called information gathering.

Two types of Footprinting:

1) Active footprinting
2) Passive footprinting

Active footprinting:

Active footprinting involves the use of tools and techniques that can aid you in
gathering more information about your target.

Passive footprinting:

Unlike passive footprinting where the process never ‘touches’ the target.

E.g. gather the data about target from search engines and Social media etc

Google Dorks (To Optimize Google Search Result):

Google dorks / Operators are use to extract the information that is difficult to locate through simple
search queries and it also use to optimize your search result.

https://www.exploit-db.com/google-hacking-database

https://gbhackers.com/latest-google-sql-dorks/
To find to sub domains of a website:

A sub domain is an additional part to your main domain name. Sub domains are created to organize and
navigate to different sections of your website. You can create multiple sub domains or child domains on
your main domain.

For example: store.yourwebsite.com in this example, ‘store’ is the sub domain, ‘your_website’ is the
primary domain and ‘.com’ is the top level domain (TLD). You can use any text as your sub domain, but
you want to make sure it’s easy to type and remember.

https://pentest-tools.com/information-gathering/find-subdomains-of-domain

https://netcraft.com

Information Extraction about target:

https://toolbar.netcraft.com/site_report?url=http://www.facebook.com

https://hackertarget.com/whois-lookup/

Download these tools:

1) https://www.offensive-security.com/kali-linux-vm-vmware-virtualbox-image-download/
2) https://github.com/c4b3rw0lf/WebSploit2018

3) https://filehippo.com/download_vmware-workstation-pro/

Download the all three tools as mentioned above!