<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Attack Surface Mapping Archives - Tech Chronicles</title>
	<atom:link href="http://kostacipo.stream/tag/attack-surface-mapping/feed/" rel="self" type="application/rss+xml" />
	<link>http://kostacipo.stream/tag/attack-surface-mapping/</link>
	<description>Ramblings of a Tech Dude</description>
	<lastBuildDate>Thu, 22 Apr 2021 21:28:38 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>

<image>
	<url>https://kostacipo.stream/wp-content/uploads/2019/12/cropped-profile-32x32.jpg</url>
	<title>Attack Surface Mapping Archives - Tech Chronicles</title>
	<link>http://kostacipo.stream/tag/attack-surface-mapping/</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>The Attack Surface Mapping guide for Ethical Hackers</title>
		<link>http://kostacipo.stream/the-attack-surface-mapping-guide-for-ethical-hackers/</link>
					<comments>http://kostacipo.stream/the-attack-surface-mapping-guide-for-ethical-hackers/#respond</comments>
		
		<dc:creator><![CDATA[Majordomo]]></dc:creator>
		<pubDate>Thu, 22 Apr 2021 21:28:38 +0000</pubDate>
				<category><![CDATA[Cybersecurity]]></category>
		<category><![CDATA[Pentesting]]></category>
		<category><![CDATA[Vulnerability Analysis]]></category>
		<category><![CDATA[Attack Surface Mapping]]></category>
		<guid isPermaLink="false">https://kostacipo.stream/?p=2074</guid>

					<description><![CDATA[<p>An attack surface aims to figure out which areas of a system must be examined and analyzed for security loopholes in order to mitigate the threat. Mapping the system’s attack surface is a practice that enables you to think about most of your assets and their value. DNS Lookup, WHOIS Lookup, etc., techniques help to [&#8230;]</p>
<p>The post <a href="http://kostacipo.stream/the-attack-surface-mapping-guide-for-ethical-hackers/">The Attack Surface Mapping guide for Ethical Hackers</a> appeared first on <a href="http://kostacipo.stream">Tech Chronicles</a>.</p>
]]></description>
										<content:encoded><![CDATA[<h5>An attack surface aims to figure out which areas of a system must be examined and analyzed for security loopholes in order to mitigate the threat.</h5>
<p>Mapping the system’s attack surface is a practice that enables you to think about most of your assets and their value. DNS Lookup, WHOIS Lookup, etc., techniques help to map the attack surface.</p>
<p>Let’s get going to have a proper understanding of Attack Surface Mapping.</p>
<h2><strong>What is an Attack Surface?</strong></h2>
<p>The Attack Surface is a term that defines all the various points where an intruder might gain access to a system and access information.</p>
<p>These flaws are usually associated with a system’s privacy issues. A simple security measure is to make the attack surface as minimal as practicable.</p>
<h2><span id="What_About_the_Attack_Surface_Types" class="ez-toc-section"></span><strong>What About the Attack Surface Types?</strong></h2>
<p>There are two kinds of attack surfaces: <strong>the digital and the physical attack surface.</strong></p>
<p>Since these dual attack surfaces intersect and are linked, it is critical to protect them together<strong>. </strong>Web services, networks, networking protocols, and domain names are all part of the digital attack surface. The physical attack surface refers to the external threats against an organization, such as building windows, manufacturing services, or a flame.</p>
<h2><span id="Visualize_an_Attack_Surface" class="ez-toc-section"></span><strong>Visualize an Attack Surface</strong></h2>
<p>As per <a href="https://f6ce14d4647f05e937f4-4d6abce208e5e17c2085b466b98c2083.ssl.cf1.rackcdn.com/attack-your-attack-surface-reduce-cyberattacks-attack-surface-visualization-pdf-1-w-2753.pdf" target="_blank" rel="noopener noreferrer">Skybox Security’s white paper</a>, there are three measures to grasp and visualize an attack surface.</p>
<ol>
<li>To envision a company’s infrastructure by mapping out all the systems, routes, and channels.</li>
<li>To compare each indication of a weakness that reveals to its last step’s visualized chart.</li>
<li>Look for compromise measures. It is a sign that a threat is already accomplishing.</li>
</ol>
<h2></h2>
<h2><span id="How_Can_You_Assess_Your_Attack_Surface" class="ez-toc-section"></span><strong>How Can You Assess Your Attack Surface?</strong></h2>
<p>Identifying your information system’s attack surface is a challenge that allows you to consider most of your resources and the importance they have. To build a global map, you will need to do the following:</p>
<ul>
<li>List down
<ul>
<li>DNS records, sub-domains, etc.</li>
<li>External and known servers like FTP, SSH, etc.</li>
<li>Different software as well as their variants.</li>
</ul>
</li>
<li>Take account of physical access to the corporation’s properties (structures, system robbery, manufacturing facility, etc.).</li>
<li>Look for more networks and servers to exploit after identifying all hosts of an organization.</li>
<li>Consider a standard web server; the open ports themselves (HTTP, RDP, etc.) are all sources of threat. It is crucial to map out the virtual clients operating on the server; web apps running on any of them are also an attack vector.</li>
<li>Most domains have a DNS server, SMTP server, etc. While evaluating the attack surface, these would be the first reference point. Using <a href="https://dns.google.com/" target="_blank" rel="noopener noreferrer">DNS lookup</a> and WHOIS, map out where the A records, MX records, and DNS records services get housed.</li>
</ul>
<p><img fetchpriority="high" decoding="async" class="aligncenter wp-image-8364 size-full td-animation-stack-type0-2" src="https://www.ehacking.net/wp-content/uploads/2021/04/How-Can-You-Assess-Your-Attack-Surface.jpg" sizes="(max-width: 1280px) 100vw, 1280px" srcset="https://www.ehacking.net/wp-content/uploads/2021/04/How-Can-You-Assess-Your-Attack-Surface.jpg 1280w, https://www.ehacking.net/wp-content/uploads/2021/04/How-Can-You-Assess-Your-Attack-Surface-300x163.jpg 300w, https://www.ehacking.net/wp-content/uploads/2021/04/How-Can-You-Assess-Your-Attack-Surface-1024x555.jpg 1024w, https://www.ehacking.net/wp-content/uploads/2021/04/How-Can-You-Assess-Your-Attack-Surface-768x416.jpg 768w, https://www.ehacking.net/wp-content/uploads/2021/04/How-Can-You-Assess-Your-Attack-Surface-696x377.jpg 696w, https://www.ehacking.net/wp-content/uploads/2021/04/How-Can-You-Assess-Your-Attack-Surface-1068x580.jpg 1068w, https://www.ehacking.net/wp-content/uploads/2021/04/How-Can-You-Assess-Your-Attack-Surface-775x420.jpg 775w" alt="How Can You Assess Your Attack Surface" width="1280" height="694" /></p>
<h2><span id="Examples" class="ez-toc-section"></span><strong>Examples</strong></h2>
<h3><span id="DNS_Lookup" class="ez-toc-section"></span><strong>DNS Lookup</strong></h3>
<p>To locate the IP address of a specific domain name, use a DNS lookup method. The IP addresses in the DNS records obtained from name servers include in the outcome. Two categories to DNS lookups:</p>
<ul>
<li><strong><em>Forward DNS lookup.</em></strong></li>
</ul>
<p>The Forward DNS lookup or basic DNS lookup is a widely use DNS method. Discovering a domain’s IP address is the forward method to DNS.</p>
<p><img decoding="async" class="alignnone wp-image-8375 size-full td-animation-stack-type0-2" src="https://www.ehacking.net/wp-content/uploads/2021/04/Picture1.png" sizes="(max-width: 1056px) 100vw, 1056px" srcset="https://www.ehacking.net/wp-content/uploads/2021/04/Picture1.png 1056w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture1-300x156.png 300w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture1-1024x533.png 1024w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture1-768x400.png 768w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture1-696x363.png 696w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture1-806x420.png 806w" alt="" width="1056" height="550" /></p>
<ul>
<li><strong><em>Reverse DNS lookup.</em></strong></li>
</ul>
<p>The procedure is similar in a reverse DNS lookup, only that it begins via an IP address and ends with the domain name.</p>
<p><img decoding="async" class="alignnone wp-image-8376 size-full td-animation-stack-type0-2" src="https://www.ehacking.net/wp-content/uploads/2021/04/Picture2.png" sizes="(max-width: 1051px) 100vw, 1051px" srcset="https://www.ehacking.net/wp-content/uploads/2021/04/Picture2.png 1051w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture2-300x148.png 300w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture2-1024x506.png 1024w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture2-768x379.png 768w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture2-696x344.png 696w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture2-851x420.png 851w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture2-324x160.png 324w" alt="" width="1051" height="519" /></p>
<h3><span id="IP_Netblocks" class="ez-toc-section"></span><strong>IP Netblocks</strong></h3>
<p>IP netblocks are sets of IP addresses that belong to a specific server. Regional Internet Registry (RIRs) allocate IP blocks to netblock users who are usually ISPs and big firms with many IP addresses.</p>
<p><img loading="lazy" decoding="async" class="size-full wp-image-8377 alignnone td-animation-stack-type0-2" src="https://www.ehacking.net/wp-content/uploads/2021/04/Picture3.png" sizes="auto, (max-width: 1037px) 100vw, 1037px" srcset="https://www.ehacking.net/wp-content/uploads/2021/04/Picture3.png 1037w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture3-300x154.png 300w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture3-1024x527.png 1024w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture3-768x395.png 768w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture3-696x358.png 696w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture3-816x420.png 816w" alt="" width="1037" height="534" /> <img loading="lazy" decoding="async" class="size-full wp-image-8378 alignnone td-animation-stack-type0-2" src="https://www.ehacking.net/wp-content/uploads/2021/04/Picture4.png" sizes="auto, (max-width: 1018px) 100vw, 1018px" srcset="https://www.ehacking.net/wp-content/uploads/2021/04/Picture4.png 1018w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture4-300x157.png 300w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture4-768x401.png 768w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture4-696x364.png 696w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture4-804x420.png 804w" alt="" width="1018" height="532" /></p>
<h3><span id="WHOIS_Lookup" class="ez-toc-section"></span><strong>WHOIS Lookup</strong></h3>
<p>Whois is a popular Internet database. It outlines who possesses a domain name, IP address, etc. Whois databases are valuable and have become an indispensable tool for ensuring the legality of the domain name registry and website management procedures. A Whois database includes all the contact details for the user, community, or organization that owns a domain name.</p>
<h2><span id="Mitigate_Attack_Surface" class="ez-toc-section"></span><strong><img loading="lazy" decoding="async" class="size-full wp-image-8379 alignnone td-animation-stack-type0-2" src="https://www.ehacking.net/wp-content/uploads/2021/04/Picture5.png" sizes="auto, (max-width: 869px) 100vw, 869px" srcset="https://www.ehacking.net/wp-content/uploads/2021/04/Picture5.png 869w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture5-300x214.png 300w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture5-768x548.png 768w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture5-696x497.png 696w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture5-589x420.png 589w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture5-100x70.png 100w" alt="" width="869" height="620" /><img loading="lazy" decoding="async" class="size-full wp-image-8380 alignnone td-animation-stack-type0-2" src="https://www.ehacking.net/wp-content/uploads/2021/04/Picture6.png" sizes="auto, (max-width: 873px) 100vw, 873px" srcset="https://www.ehacking.net/wp-content/uploads/2021/04/Picture6.png 873w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture6-300x210.png 300w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture6-768x538.png 768w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture6-696x487.png 696w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture6-600x420.png 600w, https://www.ehacking.net/wp-content/uploads/2021/04/Picture6-100x70.png 100w" alt="" width="873" height="611" /></strong></h2>
<h2><strong>Mitigate Attack Surface?</strong></h2>
<p>Monitor the attack surface and determine the threats involved with it until you know what it is. Once the attack surface is crucial, the inventory also aids in the prioritization of the components to secure. Identifying the attack surface helps in reducing it and implement appropriate defenses. With fewer potential attack sources, defense measures get focus, resulting in increased security. A few recommendations are:</p>
<ul>
<li>Delete unnecessary files and documents.</li>
<li>Monitor network devices and logs.</li>
<li>Segment the networks.</li>
<li>Strong passwords.</li>
<li>Monthly awareness training for employees.</li>
<li>Monitor zero-day vulnerabilities.</li>
<li>Apply patches on vulnerable systems.</li>
<li>Use Honeypots.</li>
</ul>
<p>The post <a href="http://kostacipo.stream/the-attack-surface-mapping-guide-for-ethical-hackers/">The Attack Surface Mapping guide for Ethical Hackers</a> appeared first on <a href="http://kostacipo.stream">Tech Chronicles</a>.</p>
]]></content:encoded>
					
					<wfw:commentRss>http://kostacipo.stream/the-attack-surface-mapping-guide-for-ethical-hackers/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
			</item>
	</channel>
</rss>
