Passive Corporate Recon (OSINT)
Reconnaissance is the first phase of compromise and considered the most important. An attacker will use publicly-available information known as Open Source Intelligence (OSINT), often referred to as digital footprint, to identify possible target services on a network for exploitation. A security professional using the same search looks for potential security leaks.
- Select one company from “List of Fortune 500 Companies and Their Websites,” provided in the required readings, and perform a passive information recon.
- Provide a brief overview of your selected company.
- Using Google or another public search engine, collect OSINT that can be used to identify corporate identifiable information and potential computing systems for exploitation (e.g., web, e-mail, FTP, DNS services), as well as employee names, email addresses, and PPI.
- Document your findings under Phase Testing in the “PEN Testing Report Guidelines,” located in the Course Materials. Refer to the SANS Institute industry-standard “Writing a Penetration Testing Report,” for examples of PEN Testing Reports.
While APA style is not required for the body of this assignment, solid academic writing is expected, and documentation of sources should be presented using APA formatting guidelines, which can be found in the APA Style Guide, located in the Student Success Center.
This assignment uses a rubric. Please review the rubric prior to beginning the assignment to become familiar with the expectations for successful completion.
You are not required to submit this assignment to LopesWrite.
Automating Information RECON
The amount of information that is publicly available is staggering, making manual searches time consuming and not cost effective. Numerous tools are available to automate the process. Recon-NG is a framework written in Python that automates web-based reconnaissance.
- Using the same organization selected in the Passive Corporate Recon (OSINT) assignment, perform additional information gathering using the open source information reconnaissance framework Recon-NG, available in Kali Linux. Focus on expanding the corporate information you discovered in the Passive Corporate Recon (OSINT) assignment.
- Document findings under Phase Testing in “PEN Testing Report Guidelines,” located in the Course Materials. Refer to the SANS Institute industry-standard “Writing a Penetration Testing Report” for examples of PEN Testing Reports.
- Append this assignment to the PEN Testing Report started in the Passive Corporate Recon (OSINT) assignment and resubmit the report (Passive Corporate Recon + Automating Information RECON).
While APA style is not required for the body of this assignment, solid academic writing is expected, and documentation of sources should be presented using APA formatting guidelines, which can be found in the APA Style Guide, located in the Student Success Center.
This assignment uses a rubric. Please review the rubric prior to beginning the assignment to become familiar with the expectations for successful completion.
You are not required to submit this assignment to LopesWrite.
Topic 2 DQ 1
How can Open Source Intelligence (OSINT) and the right of privacy for the individual or corporation conflict? What methods would you take to reduce your digital footprint, keeping in mind that nothing is ever deleted from the internet?
Topic 2 DQ 2
Describe how OSINT can be used to track the activates of cyber criminals, “Chain of Evidence”. What methodology would you use? What information do you feel will be useful?
Place your order now on a similar assignment and get fast, cheap and best quality work written by our expert level assignment writers.
Solved Questions:
SOLVED! Select either the PCN Framework
ANSWERED!! Assume you are a nurse manager on a unit
