The process of well knowing the target, digging details, foot printing and keep in touch with the target is called information gathering.
Types of Information Gathering
Active Information Gathering
- Information is gathered directly.
- E.g. -by phone call, interviews or by face to face meeting.
- Information is gathered using third party.
- E.g. - using search engine tools, websites etc.
2nd Target - Website
3rd Target - Email-id
4th Target - Web Server
Information Gathering - Website
- Before testing web application it is good to find information about that.
- WHO is Information
- Reverse IP Check
- Website Framework
- DNS Records
- Web Server provides access to internet resources
- Server Operating System
- Services running on that server
- Open Ports