Langsung ke konten utama

Understanding Footprinting Tools and Countermeasures

Definition
Footprinting is the first step of any attack on information system in which an attacker collects information about a target network for identifying various way to intrude into the system.

Footprinting Tools
There are many footprinting tools that we can use to getting information about our attacker target. Below some of example that we can use to running footprinting process.
  1. Maltego, is a program that can be used to determine the relationship and real world links between people, groups of people (social networks), companies, organization, websites, internet infra, phrases, documents, and files.
  2. Recon-ng is a web reconnaissance framework with independent modules, database interaction, built in convenience functions, interactive help, and command completion, that provides an environment in which open source web based reconnaissance can be conducted.
  3. Fingerprinting Organization with Collected Archives is a tool used mainly to find metadata and hidden information in the documents its scans.
  4. Recon Dog is an all-in-one tool for all basic information gathering needs. It use APIs to gather all information so your identity is not exposed.
  5. OSRFRmework is a set of libraries developed by i3visio to perform Open Source Intelligence task.
Another tools that we can use to perform footprinting are Prefix Whois, Gmapcatcher, Low Hanging Fruit, DNS-Digger, Sni1per, Reconnoitre, Robtex, Searchbug, Zaba Search, Cloudfaill, Nslookup, DomainHostingView, Aquation, Metasploit, and the Harvester.

Footprinting Countermeasures
Every system surely have an vulnerabilities but we can reduce or prevent it using some tools or policy. Same with that we also can prevent footprinting process with:
  1. Restrict the employees to access social networking sites from organization’s network
  2. Configure web servers to avoid information leakage
  3. Educate employees to use pseudonyms on blogs, groups, and forums.
  4. Do not reveal critical information in press releases, annual reports, and product catalogs.
  5. Limit amount of information that you are publishing on the website/internet.
  6. Use footprinting techniques to discover and remove any sensitive information publicly available.
  7. Prevent search engine from caching a web page and use anonymous registration services.
  8. Develop security policies to regulate the information that employees can reveal to third parties.
  9. Set apart internal and external DNS or use split DNS, and restrict zone transfer to authorized servers.
  10. Disable directory listings in the web servers
  11. Conduct periodically security awareness training to educate employees about various social engineering tricks and risks.
  12. Optimaliation for privacy services on Whois Lookup Database.
  13. Avoid domain-level cross-linking for the critical assets.
  14. Encrypt and password protect sensitive information.

Conclusion
In the above we know that some of tools that we can use for doing Footprinting to our target attack. For choosing which one tools that we use it depends on need and function.
As users or companies we can reduce vulnerabilities and prevent footprinting process to our data using some tips that was described above.

Footprinting is the first step of attacking (knowing information about target attack) if we can prevent this step it will better for reduce attackers opportunity to getting our public information.

Komentar

Postingan populer dari blog ini

Rangkuman Kewirausahaan Kelas XI Semester Genap

1.       Produk kerajinan dari bahan keras merupakan produk yang dibuat dengan bahan dasar yang keras dan tidak mudah dalam pengolahannya. 2.       Bahan pembuatan kerajainan dari bahan keras : -           Kayu -           Bamboo -           Logam -           Batu 3.       Menjelaskan aneka produk kerajinan berbahan keras 4.       Contoh kerajinan dari bahan keras 5.       Fungsi kerajinan berbahan keras : -           Benda hiassan / dekorasi -           Benda terapan / siap pakai -           Benda mainan 6.       Unsur-unsur karya kerajinan a.        Unsur Estetika (Kendahan) Keindahan adalah nilai nilai estetis yang menyertai sebuah karya seni Nilai-nilai keindaan memiliki prinsip -           Kesatuan (unity) -           Keselarasan (harmoni) -           Keseimbangan (balance) -           Kontras b.       Unsur Ergonomis Merupakan karya kerajinan yang digunakan sebagai aspek fungsi/kegunaan -           Keamanan -           Kegunaan -

KONFIGURASI DASAR DEBIAN 7 MUH NANDA J R #UKK 2016

UKK Kelas 11 Teknik Komputer & Jaringan SMK Negeri 2 Klaten Yuk yang mau liat di youtube  Klik Ini !!  Yang pengen punya dan menyimpan video dari admin  Klik Ini Loh !!! Terima Kasih By : Muh Nanda J R

Rangkuman Bahasa Jawa Kelas XI SMK Semester Genap

1.       Isi ajaran pupuh gambuh serat wedhatama a.        Rasa syukur marang gusti Allah kang maha Agung kanthi suci ing batin b.       Ngadohi tumindak kang ala c.        Ngadohi watak angkara murka lan sifat ngedel ngendelake d.       Tekun nglakoni sembayang 2.       Isi ajaran dalam ceritha rakyat ande – ande lumu a.        Adil marang anak b.         3.       Ciri – ciri cerita rakyat a.        Disampaikan secara turun – temurun b.       Tidak diketahui siapa pengarangnya c.        Mengandung nilai – nilai luhur d.       Bersifat tradisional e.        Memiliki banyak versi dan variasi f.        Mempunyai bentuk bentuk klise dalam cara pengungkapannya g.       Berkembang dari mulut ke mulut h.       Bersifat anonym i.         Cerita rakyat di sampaiakan secara lisan 4.       Menulis dengan aksara jawa petikan serat kalatidha 5.       Menjelaskan paribasan Materi A.     Paugerane ( Ciri – Ciri ) tembang diperangkake ing telung kelompok :