Chapter 3

Indirect Target Information Acquisition (ITIA)

In this section we focus on discovering more about our target without actually “touching” the target. In this manner we learn all we can about the target covertly without alerting those who may be watching the target (a security team or whoever).

Let’s begin with a tool called Metagoofil. Metagoofil is used to gather metadata from files. It automatically searches for the files, retrieves the documents, and performs its metadata analysis. The tool is developed by Edge-Security.com.

To observe an example and learn how to use this tool, type ./metagoofil.py. Or in some versions just type metagoofil.

Now let’s actually make use of this tool. First, we need to make a directory called files ...

Get Conducting Network Penetration and Espionage in a Global Environment now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.