Scribd
Upload
21 views

Lab1 4-IA1702

The document provides instructions for using various tools to perform website footprinting and reconnaissance on a target website. It details how to use the ping command to find a website's IP address and determine maximum frame size. It also explains how to use Website Informer and Web Data Extractor to gather additional information like whois records, meta tags, emails and more.

Uploaded by

Le Quang Vu (K16HCM)
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
21 views

Lab1 4-IA1702

The document provides instructions for using various tools to perform website footprinting and reconnaissance on a target website. It details how to use the ping command to find a website's IP address and determine maximum frame size. It also explains how to use Website Informer and Web Data Extractor to gather additional information like whois records, meta tags, emails and more.

Uploaded by

Le Quang Vu (K16HCM)
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 37

4: Perform Website Footprinting

Gather Information About a Target Website using


Ping Command Line Utility
1. Turn on the Windows 10 virtual machine.

2. Login to the Windows 10 virtual machine with Username: Admin and


Password: Pa$Sword.
3. Open the Command Prompt window. Type ping
www.certifiedhacker.com and press Enter to find its IP address. The
displayed response should be similar to the one shown in the screenshot.
4. Note the target domain's IP address in the result above (here,
162.241.216.11). You also obtain information on Ping Statistics such as
packets sent, packets reccived, packets lost, and approximate round-trip
time.
5. In the Command Prompt window, type ping www.certifiedhacker.com
f- 1500 and press Enter.
6. The response, Packet needs to be fragmented but DF set, means that
the frame is too large to be on the network and needs to be fragmented.
The packet was not sent as we used the -f switch with the ping
command, and the ping command returned this error.
7. In the Command Prompt window, type ping www.certifiedhacker.com
f- 1300 and press Enter.
8. Observe that the maximum packet size is less than 1500 bytes and
more than 1300 bytes.
9. Now, try different values until you find the maximum frame size. For
instance, ping www.certifiedhacker.com -f -1 1473 replies with Packet
needs to be fragmented but DF set, and ping www.certifiedhacker.com -
f- 1472 replies with a successful ping. It indicates that 1472 bytes are the
maximum frame size on this machine's network.
10. Now, discover what happens when TTL (Time to Live) expires. Every
frame on the network has TTL defined. If TTL reaches 0, the router
discards the packet. This mechanism prevents the loss of packets.
11. In Command Prompt, type ping www.certifiedhacker.com-i 3 and
press Enter. This option sets the time to live (4) value as 3.
12. Reply from 100.65.231.150: TTL expired in transit means that the
router (100.65.231.150, students will have some other IP address)
discarded the frame because its TTL has expired (reached 0).
13. Minimize the command prompt shown above and launch a new
command prompt. Type ping www.certifiedhacker.com -i 2-n 1 and
press Enter. Here, we set the TTL value to 2 and the n value to 1 to check
the life span of the packet.
17. Repeat the above step until you reach the IP address for
www.certifiedhacker.com (in this casc, 162.241.216.11).
18. Here, the successful ping to reach www.certifiedhacker.com is 27
hops.
Gather Information about a Target Website using
Website Informer
1. In the Windows 10 virtual machine, open a web browser (here,
Mozilla Firefox), type https://website.informer.com in the address bar,
and press Enter. The Website Informer website appears, as shown in the
screenshot.
2. To extract information associated with the target organization website,
type the target website's URL (here, www.certifiedhacker.com) in the
text field, and then dick on the Search button, as shown in the
screenshot below.
3. A search result for WWW.CERTIFIEDHACKER.COM containing
information such as General Info, Stats & Details, Whois, and IP Whois is
displayed, as shown in the screenshot.
4. In the General Info tab, information such as Created, Expires, Owner,
Hosting company, Registrar, IPs, DNS, and Email associated with the
target website is displayed as shown in the screenshot.
5. Click on the Wheis tab to view detailed Whois information about the
target website, as shown in the screenshot.
6. Similarly, you can click on the Stats & Details and IP Whois tabs to
view the detailed information of the target website.
Extract a Company’s Data using Web Data
Extractor
1. In the Windows 10 virtual machine, navigate to EACEH-Tools\CEHv11
Module 02 Footprinting and Reconnaissance\Web Spiders\Web Data
Extractor and double-click wde.exe.
2. If the User Account Control pop-up appears, click Yes.
3. Follow the wizard steps to install Web Data Extractor and click Finish.
4. After installation, launch Web Data Extractor from Desktop.
5. The Web Data Extractor main window appears. Click New to start a
new session.
6. The Session settings window appears; type a URL (here,
http/www.certifiedhacker.com) in the Starting URL ficld. Check all the
options, as shown in the screenshot, and click OK.
7. Click Start to initiate the data extraction.
8. Web Data Extractor will start collecting information (Session, Meta
tags, Emails, Phones, Faxes, Merged list, URLs, and Inactive sites).
9. Once the data extraction process is completed, an Information dialog
box appears; click OK.
10. View the extracted information by clicking the tabs.
11. Select the Meta tags tab to view the URL, Title, Keywords,
Description, Host, Domain, page size, etc.
12. Select the Emails tab to view information related to emails such as
Email address, Name, URL, Title, etc.
13. Select the Phones tab to view the Phone, Source, Tag, URL, etc.
14. Check for more information under the Faxes, Merged list, URLs, and
Inactive sites tabs.
15. To save the session, choose File and click Save session.
16. Specify the session name (here, softwareqatest.com) in the Save
session dialog box and click ok.
17. Click the Meta tags tab, and then click the floppy icon.
18. An Information pop-up may appear with the message You cannot
save more than 10 records in Demo Version; click OK.
19. The Save Meta tags window appears. In the File name field, click on
the folder icon, select the location where you want to save the file,
choose File format, and click Save.

You might also like