Problem:
One of the things a security analyst must consider when protecting their infrastructure and information is the ability of an attacker to access information about an organization, systems they utilize, and the information their protecting. One of the techniques an attacker uses is reconnaissance. Reconnaissance is the first phase an attacker uses to gather information. This information is used to learn as much as possible about the target to determine competitive intelligence. The attacker might even uses legitimate and non-legitimate tools to monitor and scan a target system. This information is critical for an attacker to strategies their attack. Reconnaissance can also be referred to as "Footprinting."
Reconnaissance as simple as dumpster diving can divulge sensitive information. What kind of information do you think you could gather in dumpster diving? (Please answer)
Select five of the following and review what they offer and write a summary of what it does and why you would think it would help an IT security analyst.
- Whois database utility or website https://www.tamos.com/sw.htm or https://ws.arin.net/whois; https://www.whois.net
- GEOSpider or https://www.geowhere.net
- Web Site https://www.visualware.com
- Web Site www.samspade.com
- Web site www.waybackmachine.com
- Web site www.archive.org
- SpiderFoot www.binarypool.com/spiderfoot/
- ARIN https://www.arin.net/
- NEO Trace https://articles.techrepublic.com.com/5100-10878_11-1053295.html
- Angry IP https://www.angryyziber.com
- Solarwinds https://solarwinds.net
- Sensepost Footprint Tools https://www.sensepost.com/
- BiLE Suite https://www.vulnerabilityassessment.co.uk/bile.htm
- Alchemy Network Tool https://www.alchemy-lab.com/products/ant/
- Advanced Administrative Tool https://www.glocksoft.com/aatools.htm
- My IP Suite https://www.sabsoft.com/MyIPSuite/
- Wikto Footprinting Tool https://www.security-database.com/toolswatch/Wikto-2-2837-27211-just-released.html
- SmartWhois https://smartwhois.com/
- ActiveWhois https://activewhois.com/
- LanWhois https://lantricks.com/lanwhois/
- CountryWhois https://www.tamos.com/products/countrywhois/
- WhereIsIP https://whereisip.findmysoft.com/
- Ip2country https://ip2country.en.softonic.com/
- CallerIP https://www.callerippro.com/
- Web Data Extractor Tool https://www.webextractor.com/
- Online Whois Tools
- What is MyIP https://www.whatismyip.com/
- DNS Enumerator https://www.securiteam.com/tools/5VP0H1FHGO.html
- https://docs.google.com/viewer?a=v&q=cache:YRGLixFxzJYJ:packetstormsecurity.org/papers/general/dns-enumeration.pdf+dns+enumerator&hl=en&gl=us&pid=bl&srcid=ADGEESjx-NiSu4O2LQRkR9wymoN5nbDCU8hLnTYzyLVvIxgdMvWf8UEtsMdimgK-9qYF48qOcDf3s9VKaFouVMoayHaVhAzsLjCsbSKKWeR3vbQ5KoFC4M-SDutqsZFXZyYpL2qbJNz_&sig=AHIEtbQtSR4mfRCuHM9IHqPbOhfTnlfR4A
- SpiderFoot https://www.binarypool.com/spiderfoot/
- Nslookup https://support.microsoft.com/kb/200525