Gathering Information for Penetration Testing Using Search Engines Discovery and OWASP ZAP

Home  ›  Cyber defense  ›  Gathering Information for Penetration Testing Using Search Engines Discovery and OWASP ZAP
Gathering Information for Penetration Testing Using Search Engines Discovery and OWASP ZAP
April 20, 2021 No Comments Cyber defense, cybersecurity, Online security, Penetration testing, System security admin

Using a search engine discovery is another great option for gathering intelligence about a penetration testing target. A search engine query can be direct or indirect. The direct method is where the search engine can be sued to dig into the indexes and contents from caches. The indirect method is where sensitive information such as the design and configuration of the website could be assessed by searching about the target in forums or social media sites.
To proceed with trying to understand how to find out of there is a sensitive design and configuration vulnerability in an application or a website, try to use some of the search engines such as Chrome, Baidu, Bing, Duck Duck Go, and Punkspider.

Tags
admin
Use Defensive Cybersecurity to Mitigate Cyber attack July 28, 2021
The Human Factor in a Ransomware Attack Part-2 June 17, 2021
Gathering Penetration Testing Intelligence from Network and Application Platform Configuration June 1, 2021
Security Implication of Web Frameworks May 18, 2021
How to use Comments and Metadata Information to Gather Intelligence for Penetration Testing May 11, 2021
How to Use Robots.txt File to Gather Intelligence for Penetration Testing April 27, 2021
Penetration Testing Information Gathering for Web Server Fingerprinting April 15, 2021
Approaches to Penetration Testing April 7, 2021
Tool Selection for Penetration Testing March 23, 2021
Selection of Tools for Penetration Testing June 30, 2020

Leave a reply

Your email address will not be published. Required fields are marked *