"BASICS OF ETHICAL HACKING:SERIES #3.1"

Image source:https://pixabay.com/en/hacker-attack-intel-processor-3062252/

Hi friends,I am continuing my post of "BASICS OF ETHICAL HACKING SERIES".
You can read my previous post from this below link:
https://steemit.com/hacking/@danishali22786/basics-of-ethical-hacking-series-1
https://steemit.com/hacking/@danishali22786/basics-of-ethical-hacking-series-2
https://steemit.com/hacking/@danishali22786/basics-of-ethical-hacking-series-3

"FOOTPRINTING"

As I have explained in previous post there are many topics in FootPrinting,So I am continuing it.

*Registrar Query Or WhoIS

This is a query and response protocol that is widely used for querying databases that store the registered user such as a domain name,Ip address block,or an autonomous system.However,It is also used for a wide range of other information.The protocol stores and delivers content in a human-readable format.

*Organizational Query

This kind of query involves searching a specific registrar in order to obtain all instances of the target's name.

*Domain Query

This kind of query is based on results found in an organizational query.Using domain query,one can find the company's address,domain name,administrator's and his/her phone numbers, and the system's domain servers as,while registering a domain,this is included in the registration form.the administrative contact could be very useful to a hacker as it provides a purpose of social engineering.So this is where social engineering comes into play.As a result,many administrators post incorrect phone numbers to protect themselves.

*POC Query

This kind of query finds many IP addresses that a machine may have,which are majorly public and are associated with the machine.
Let me explain all the above queries with the help of a simple case study.

Case study.
Suppose I am working as an Ethical Hacker/Cyber security Expert In XYZ Company and my company wants me to find the IP address,domain details,physical address and employee record of www.abc.com.

steps

1. I will open Dos Prompt and type ping www.abc.com and Press Enter

2. I will visit google.com and search for www.abc.com and browse the target website for all possible information.

3. For the domain owner's hosting company details including e-mail address,I will open www.domaintools.com or www.ping.eu and type www.abc.com in the target site address bar.

4. For the physical location of the server,I will open www.whatismyipaddress.com and type the obtained Ip address,and click on Lookup IP address to trace it.
   This way,I can successfully manage to obtain a lot of information about the target URL/site.

Footprinting To be continued...
Objectives of writing this post:

My main purpose of writing this post is to inform you all that there is no way to completely protect a network unless one knows what he is up against.Only by knowing how an attack happens,and what all an attacker can do to compromise with a machine,individuals and organisations can properly protect their systems.
Legal issues:
I request to all readers to follow legal procedures under all circumstances because you are hacking in to a system.
The government has made it mandatory to get prior permission before running any of the tools against any network.
There are many cyber laws made by the government,we must follow that otherwise It will be considered as a crime.
I have only basic information of ethical hacking learned from internet and by reading various books but I also want to learn it deeply.I want to join some big organization of ethical hacking institutes.But they are very costly.So I am finding a way to earn money and when I have enough money I will take admission to that ethical hacking institutes.
Thank you friends.