NOTES

  HACKING CHEAT SHEET Reconnaissance Map Out The Attack Surface  Parts Of The Range May Be Hidden. These Techniques Will Help You Find Them. Check Robots.Txt The robots.txt file, found in a site's web root, tells well-behaved web crawlers what parts of the site to ignore. You're not a well-behaved web crawler, so you can look at those pages. You may find pages the rest of the site doesn't link to. Try Some Common URLs By guessing common page and directory names, you might be able to discover even more content. A tool like dirbuster can help (but it's probably overkill here). Look For HTML Comments & Hidden Elements Look for forms, form fields and links that appear in the page source, but aren't visible on the page. The CSS style  display: none;  hides an element; remove the styling to make it visible again. Take a look at the HTML comments too! System Fingerprinting Identify What Components The System Is Using. Questions To Ask Which web server - Apache, nginx, ...

Top 16 open source intelligence tools  (OSINT) to find anyone online What are the top 16, open source tools (OSINT) to find anyone online? What a great question! and a huge one. We spend time talking to OSINT experts and private investigators to find out. Here we cover their good and bad points (not many bad points!), giving our review, link and advice. This document will increase your knowledge and add 16 amazing investigation tools, leading you deeper into the dark and quite often secret cave, of online investigations. As I’m sure you know, Open source intelligence (OSINT) is the application of utilising data that is publicly available, to achieve your aim. Open source may give the impression of publicly available information only. OSINT could also utilise human intelligence (such as social engineering). But, there are many methods of gathering and sifting this intelligence, not all, but most, include using computer systems. Why is OSINT so important? OSINT is making sense of the...