Assignment 5.1.2: Basics of Network Exploitation

Understanding Reconnaissance in Cybersecurity

What is Reconnaissance?

Reconnaissance is like doing research before an exam. In cybersecurity, it involves gathering information about a target (such as a company's website) to understand how it operates and identify potential weaknesses. Think of it like checking out a friend's house online before visiting to see what you might expect. Similarly, in cybersecurity, we collect information to find possible security gaps.

Objectives of Reconnaissance

The main goals of reconnaissance are:

1. Identify the components: Understand what makes up the target system or network.

2. Discover weaknesses: Look for vulnerabilities that might be exploited.

3. Assess security setup: Learn how the target's security is configured.

4. Plan further tests: Strategize how to approach additional security checks.

Methods and Tools Used

Reconnaissance can be done in two main ways:

Passive Reconnaissance: This involves gathering information without directly engaging with the target. For example, you might look at public websites, social media profiles, or company reports. It's like researching a company by reading its website and checking its social media profiles.

Active Reconnaissance: This means interacting directly with the target system. You might use tools to scan for open ports or vulnerabilities, similar to trying door handles to see which ones are unlocked.

Tools:

Nmap: A tool for scanning networks to discover open ports and services.

Shodan: A search engine for finding devices connected to the internet.

theHarvester: A tool for gathering email addresses and domain names from public sources.

Ethical and Legal Considerations

It's crucial to follow ethical and legal guidelines during reconnaissance:

Ethical Considerations: Always obtain permission before probing someone else's system or network. It's similar to needing permission before entering someone's private property.

Legal Implications: There are laws governing how information can be collected. Unauthorized access can lead to legal consequences, like trespassing on private property.

Guidelines: Adhere to legal and ethical guidelines to ensure your actions are correct and respectful. Always operate within the rules to avoid potential issues.