Slashdot Mirror

← Back to Stories (view on slashdot.org)

Reconnaissance In Virtual Space

Posted by ryuzaki0 on from the weekend-project dept.

An anonymous reader writes "Whitedust Security have released an interesting article discussing online reconnaissance techniques. From the article: 'Sometimes thirty-two bits are all you need. This is a guide to Internet reconnaissance - a guide to finding out as much as you can concerning a target via the Internet'."

3 of 89 comments (clear)

  1. And this would be reconnaissance? by giorgiofr · · Score: 4, Informative

    A guide to internet reconnaissance? WHERE? This is just an overview of the whois command! And it made the frontpage on /.
    How sad.

    --
    Global warming is a cube.
  2. DNS and whois? by slavemowgli · · Score: 3, Informative

    To sum up the article:

    1) You can use the DNS system to resolve IP addresses to hostnames, which may tell you something about the organisation they belong to.
    2) For more information, perform a whois query.

    That's news? Seriously, people, that's like saying that you can control your car with the help of this "steering wheel"...

    --
    quidquid latine dictum sit altum videtur.
  3. For people who want high-tech, a fascinating book by Beryllium+Sphere(tm) · · Score: 3, Informative
    >And now, your tips?

    To triangulate the source of spoofed IP packets, to (theoretically) sniff a keyboard by recording TCP sequence numbers, and even how to build a distributed computer out of covert channels, see Michal Zalewski's Silence On The Wire. It's less practical than nslookup and whois but it's a glorious romp through the fun parts of information security. Read it for inspiration and to jar you into thinking outside the box.

    (Disclosure: I got a free review copy.)