Chapter 5
African Network Information Centre (AfriNIC)
Africa
Google Hacking
An effort to locate useful information using techniques already provided by a google search engine in new ways.
Website (Countermeasures)
Any sensitive or restricted info should be removed along with unnecessary information.
Insecure applications
Applications that operate without encryption.
Asia-Pacific Network Informtaion Centre (APNIC)
Asia and the pacific region.
Whois (Software)
Designed to query the databases that hold registration information and to identify the registrant of a specific domain name.
Google Hacking (Countermeasure)
Don't put sensitive information, linked or unlinked, anywhere accessible by a search engine.
RIPE Network Coordination Centre (RIPE NCC)
Europe, the middle east and central asia.
"filetype" search engine command
Instructs google to search for a particular term within a specific file type.
"intitle" search engine command
Instructs google to search for a term within the title of a document.
Domain Info (Countermeasure)
Keep as generic as possible and avoid names, phone numbers, etc.
Latin American and Caribbean Internet Addresses Registry (LACNIC)
Latin America and parts of the Caribbean region.
Employee Posting (countermeasure)
Lookout for employees who might post too detailed information.
American Registry for Internet Numbers (ARIN)
North America and parts of the Caribbean.
Nslookup
Program used to query INternet domain name servers.
Insecure Applications (Countermeasure)
Regularly scan searcch engines to see if links to private services are available.
Internet Assigned Numbers Authority (IANA)
Responsible for the global coordination of Domain Name system (DNS) root, IP addressing, and other internet protocol procedures.
Securing DNS (Countermeasure)
Sanitize DNS registration and contact information to be as generic as possible.
Traceroute
Software program used to determine the path a data packet traverses to get a specific IP address.
Internet Archive
Takes snapshots of a website at regular intervals and makes them available to anyone who looks or needs it for reference later on.
Job Listings (Countermeasure)
Use third party companies for job listings for sensitive jobs and be as generic as possible.
Regional Internet Registries (RIR's)
responsible for management, distribution, and registration of public IP addresses within their respective assigned regions.
"inurl" search engine command
used to search within a site's uniform resource locator (URL)