Recon Tools - nataneliezer/tech-journal GitHub Wiki

Google Dorking

Google dorking is a method of using google's advanced search options to find specific targets. These could be documents that were uploaded that contain certain information.
Here are several resources to learn more about google dorking
https://www.codespaces.com/power-searching-with-google.html
https://www.youtube.com/watch?v=H1zKQ7z3hN4
https://www.youtube.com/watch?v=lESeJ3EViCo

TheHarvester

This is a tool that comes standard on kali linux and can also be found here. This is an osint tool to search domain names, emails, IP addresses. Helps to determine external landscape of an organization. Here are some links to tutorials on how to use TheHarvester with Kali
https://www.hacking-tutorial.com/tips-and-trick/information-gathering-using-theharvester-in-kali-linux/
https://www.kali.org/tools/theharvester/
https://www.hackingloops.com/theharvester/

Nmap

Nmap is a port scanning and host discovery tool. It is very powerful and can derive OS information in addition to identifying hosts that are up and ports that could be open. This is more powerful than just a ping as it will use other methods like TCP to determine if a port is open. The link to the documentation for this tool can be found here
A quick guide to usage and some key flag details can be found here: Nmap cheat sheet
https://www.redhat.com/sysadmin/quick-nmap-inventory
https://www.techtarget.com/searchnetworking/tip/How-to-use-Nmap-to-scan-a-network-for-documentation
https://www.blumira.com/using-nmap/