Expanded

Reconnaissance with Spiderfoot

Spiderfoot is an automation platform for open source intelligence and can be used to plan red team operations. In this course, you will learn reconnaissance using Spiderfoot.
Course info
Level
Intermediate
Updated
Oct 13, 2021
Duration
38m
Table of contents
Description
Course info
Level
Intermediate
Updated
Oct 13, 2021
Duration
38m
Your 10-day individual free trial includes:

Expanded library

This course and over 7,000+ additional courses from our full course library.

Hands-on library

Practice and apply knowledge faster in real-world scenarios with projects and interactive courses.
*Available on Premium only
Description

When planning future operations, a red team needs information about the target organization. Specifically, the organization’s digital footprint and attack surface consisting of email addresses, employees, social media accounts, cloud-based tools, connected devices, public information, and other exposures can be leveraged to plan and execute other phases of the adversary life cycle. In this course, Reconnaissance with Spiderfoot, you'll learn how to utilize Spiderfoot to execute reconnaissance in a red team environment. First, you’ll see how to select relevant and unique identifiers for the target organization. Next, you’ll apply use Spiderfoot’s extensive set of modules to gather data about the target. Finally, you’ll learn how to simulate gathering and analyzing specific information for a potential attack target. When you’re finished with this course, you’ll have the skills and knowledge to execute MITRE ATT&CK techniques, such as T1589 Gather Victim Identity Information, T1593 Search Open Websites/Domains, and T1596 Search Open Technical Databases using Spiderfoot. More importantly, knowing how these techniques can be used against you, will ultimately lend to your ability as an organization, or an individual, to detect and defend against specific attack vectors.

About the author
About the author

Keith Watson is currently focused on assisting clients with their security needs as a Core Services Architect at Optiv Security and has been an active information security professional since 1997.

More from the author
Reconnaissance with Shodan
Intermediate
27m
Jun 25, 2021
Metasploit: Getting Started
Beginner
2h 4m
Sep 4, 2020
More courses by Keith Watson
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Hello, everyone! Welcome to Pluralsight and this course, Reconnaissance with SpiderFoot. Before a Red Team even begins planning its attacks, it needs detailed and relevant information about specific targets. This is the reconnaissance phase, and it's one of the first steps in Red Team engagement. The Red Team can use that recon information from the very first exploitation into lateral movement, and even social engineering or physical attacks. SpiderFoot is an open source intelligence automation platform containing over 200 modules and utilizing a variety of online data sources. Starting with some initial target information and the level of detail you want to get from that scan, SpiderFoot will passively gather data from those online sources based on the type of target information provided, or it will actively probe the target. It can start with a seed of target information, such as a domain name, IP address, email, or name, and then grow the search based on the data it finds. SpiderFoot presents discovered information in a fairly effective web user interface and can be managed through a simple command line. We will start by learning more about the capabilities of SpiderFoot to enable us to select an appropriate scan type and initial target so that our searches can be effective. We will also look at using SpiderFoot from a Red Team project perspective, where we'll focus on a specific organization and the information they expose to the internet. As SpiderFoot uses both passive and active exploration techniques, we'll explore options to collect information in a passive manner. The target will have no indication of our activities. Whether you're trying to gather open source intelligence as part of a Red Team engagement, or want to discover and reduce your organization's information exposures, join me in learning more about performing reconnaissance with SpiderFoot here at Pluralsight.