Use OSINT tools to gather and analyze  publicly available information.

Welcome!

You are working as a Cyber Security Analyst at SecureXit, where you need to perform an OSINT assessment to identify publicly available information about a client's organization.

Your task is to use dnsenum, dnsrecon, dnsmap, lbd, theHarvester, Maltego, and Shodan to gather information, discover exposed services, and analyze the organization's external digital footprint for potential security risks.

Topic : Networking Fundamentals

1) Introduction to Networking.

2) IP Addressing.

3) DNS fundamentals.

4) HTTP/HTTPS protocols.

Perform Domain Enumeration Using dnsenum

Open the Kali Linux terminal and run the following command:

Enumerate DNS Information Using dnsrecon

Click on the official Wireshark Download link from the search results.

Review the output and identify DNS records, name servers, and discovered subdomains.

Access the Download Page and  Select Windows Installer

Click on Windows x64 Installer to download the latest Windows version of Wireshark.

Start the Download

The download begins automatically; click “No thanks, just download” if prompted.

Launch the Setup File and Welcome to Setup Wizard

Click Next to continue with the Wireshark installation process.

Accept the License Agreement

Read the license agreement and click Noted to proceed.

Continue Installation Setup

Click Next on the professional usage information screen.

Choose Installation Components

Keep the default selected components and click Next.

Select Additional Tasks

Choose shortcut and file association options, then click Next.

Choose Installation Location

Select the installation folder or keep the default path and click Next.

Install Npcap

Keep Install Npcap selected because it is required for packet capturing.

USBPcap Installation Option

Leave USBPcap unchecked unless USB traffic capturing is needed, then click Install.

Wireshark Installation Starts

Wait while Wireshark copies files and installs required components.

Accept Npcap License Agreement

Click I Agree to continue installing Npcap.

Select Npcap Installation Options

Keep the default Npcap settings and click Install.

Npcap Installation in Progress

Wait for Npcap installation to complete successfully.

Npcap Installation Complete

Click Next after the Npcap installation finishes.

Finish Npcap Setup

Click Finish to close the Npcap installer.

Complete Wireshark Installation

Finish the Wireshark setup and launch the application from the desktop.

 Use nslookup

Open Command Prompt and type:

Observe:

• DNS Server used

• IP address of domain

       Open Command Prompt and type:

Use ping

Observe:

• Domain automatically resolved to IP

• Response time

Packet Capture (Wireshark)

Observe:

• DNS Query (A record request)

• DNS Response (IP returned)

• ​  Identify different DNS record types (A, AAAA, MX, NS)

•   Verify IP addresses and services linked to a domain

Open DNS Lookup Tool

 Enter Domain

 You will see:

When a user types google.com:

• DNS query is sent

• NS server responds

• A/AAAA record gives IP

• System connects to server

This is called DNS Resolution Process.

 Visit HTTP Site

Observe:

• Plain text requests

• GET request visible

• No encryption

Open the Wireshark In filter search -  http

 Visit HTTPS Site

Observe:

• TLS handshake

• Encrypted packets

• No readable content

Great job!
You have successfully completed your lab on DNS and Secure Web Communication.

In this lab, you have: Understood DNS Resolution (Domain → IP), Used nslookup and ping tools, Captured traffic using Wireshark, Compared HTTP (Insecure) vs HTTPS (Encrypted) communication

You are now ready to move to the next stage of Network Security Analysis

Topic : Core Internet Technologies

1) TCP/IP And OSI Model
2) Ports and common network protocols