LAB #3 | Perform Data Gathering and Footprinting on a Targeted Website
LAB #3 – ASSESSMENT WORKSHEET
Perform Data Gathering and Footprinting on a Targeted Website
Course Name and Number:
Student Name:
Instructor Name:
Lab Due Date:
Overview
In this lab, you targeted an organization with an e-commerce website and performed data gathering and footprinting for that site. You collected public domain information about an organization’s website by making use of Google hacking techniques, downloading the Sam Spade reconnaissance-gathering tool, and using nslookup and tracert, similar DOS command tools packaged with Microsoft® Windows. You also researched public domain sites such as IANA’s WHOIS tool to obtain public domain information about the targeted website. Finally, you performed Google hacking research on the targeted organization’s e-commerce website to identify other shared information.
Lab Assessment Questions & Answers
1. Which reconnaissance tool comes with Microsoft® Windows that can provide reconnaissance-gathering
data and can be initiated from the DOS command prompt? What useful information does this query provide? name and the IP address associated with the source you are targeting.
2. What is the difference between ARIN, RIPE, and IANA? What regions of the world do these domain name
registry organizations cover?
The internet assigned numbers authority (IANA) delegates internet resources to the regional internet registries which are what ARIN (American Registry for Internet Numbers) and RIPE (Reseaux IP Europeens Network Coordination Centre)
ARIN covers the United States, Canada, several parts of the Carribean and Antartica.
RIPE covers Europe, Russia, the MIddle East, and central Asia.
38566_LMxx_Lab3.indd 38
8/22/12 11:26 AM
Assessment Worksheet
39
3. What other functions can be completed using the Sam Spade utility?
You can do Zone Transfers, SMTP relay checks, scan addresses, crawl