You work as an IT security auditor hired by a law firm in Boston to test whether you can gain access to
sensitive information about the company clients. You have rummaged through their trash and found very little
information. You do not want to set off any alarms on their network, so you plan on performing passive foot
printing against their Web servers. What tool should you use?
A.
Ping sweep
B.
Nmap
C.
Netcraft
D.
Dig
Netcraft provide internet security services including anti-fraud and anti-phishing services, application testing and PCI scanning. We also analyse many aspects of the internet, including the market share of web servers, operating systems, hosting providers and SSL certificate authorities.
What is Footprinting?
Refers to the process of collecting as much as information as possible about the target system to find ways to penetrate into the system. An Ethical hacker has to spend the majority of his time in profiling an organization, gathering information about the host, network and people related to the organization.
Information such as ip address, Whois records, DNS information, an operating system used, employee email id, Phone numbers etc is collected.
Source: https://www.greycampus.com/opencampus/ethical-hacking/what-is-footprinting
Netcraft is a website analyzing server.
URL: https://toolbar.netcraft.com/site_report
With this website, we find basic and important information on website like:-
– which OS it uses
– in which web server it runs
– how much a website is secure
– the scripted language that website used
– in which technology a website works
– hosting providers
– ISPs
– encrypted transactions
– uptime information and much more.