Episode Details
Back to Episodes
Course 34 - Cybersecurity Kill Chain | Episode 1: Reconnaissance and Footprinting Fundamentals
Published 1 week, 2 days ago
Description
In this lesson, you’ll learn about: reconnaissance in the Cyber Kill Chain1. What is Reconnaissance?
You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cybercode_academy
- Reconnaissance is the first phase of the Cyber Kill Chain
- It focuses on:
- Gathering information about a target
- It forms the foundation of the entire attack
- Poor recon = weak attack
- Strong recon = precise targeting
- Collecting information without directly interacting with the target
- Tools like:
- whois → domain ownership & contacts
- nslookup → DNS & IP mapping
- Shodan
- Censys
- Open ports
- Running services
- Technologies used
- LinkedIn
- Employee roles
- Tech stack hints
- Facebook
- Personal interests
- Behavior patterns
- Phishing attacks
- Social engineering
- Searching discarded materials for:
- Passwords
- Internal documents
- Configurations
- Direct interaction with the target system
- Identify:
- Live hosts on a network
- Tool:
- Nmap
- Open ports (e.g., SSH, FTP, VNC)
- Operating system details
- Builds a complete target profile
- Identifies:
- Weak points
- Entry points
- Makes later stages:
- Faster
- More effective
- Recon = information gathering phase
- Passive recon is stealthy and preferred
- Active recon is powerful but detectable
- Tools like Shodan and Nmap reveal technical exposure
- Social media provides human attack vectors
- Instead of blind attacks
- They perform data-driven targetin
You can listen and download our episodes for free on more than 10 different platforms:
https://linktr.ee/cybercode_academy