Information Gathering

From HackOps
Revision as of 13:41, 11 May 2025 by 84.211.245.84 (talk)
Jump to navigation Jump to search

Information Gathering

Information gathering is the initial phase of hacking and reconnaissance.

It involves discovering the attack surface, identifying reachable hosts, and understanding the target environment — all without yet exploiting anything.

This phase includes both passive and active techniques, using tools to enumerate DNS, scan ports, and harvest open data.

Subcategories

  • DNS Reconnaissance – Interrogate DNS to uncover subdomains, records, zones, and relationships.
  • Network Scanning Tools – Use scanners like Nmap or Masscan to map open ports and services.
  • OSINT Tools – Gather public data using platforms like theHarvester, SpiderFoot, and custom scripts.

Purpose

Gain visibility into the target system's structure without triggering alerts.

Every successful attack starts with knowing where to look — information gathering makes exploitation possible.

Common Goals

  • Discover live hosts
  • Map open ports
  • Identify subdomains
  • Learn about operating systems
  • Uncover public data on individuals and infrastructure
Retrieved from "https://hackops.wiki/index.php?title=Information_Gathering&oldid=23"