1. Introduction

Footprinting is the crucial first step in any information system attack. It involves gathering information about a target network to identify potential entry points and vulnerabilities. This document reviews key concepts, techniques, tools, and countermeasures related to footprinting.

2. Footprinting Concepts

Definition:

"Footprinting is the first step of any attack on information systems in which an attacker collects information about a target network to identify various ways to intrude into the system."

Types:

• Passive Footprinting: Gathering information without directly interacting with the target (e.g., using search engines).
• Active Footprinting: Gathering information through direct interaction with the target (e.g., social engineering, port scanning).

Objectives:

• Understand the target's security posture.
• Narrow down the focus area for attacks.
• Identify potential vulnerabilities.
• Create a network map of the target.

3. Footprinting Techniques

3.1 Footprinting Through Search Engines

Information Gathering:

Search engines can uncover sensitive information like:

• Employed technology platforms.