This month’s podcast covered some tips and tricks for OSINT and reconnaissance during a pentest, and we go over InfoSec certifications and training.
- Dig through registrant information for target organization and leverage tools like webboar.com to find additional connected domains via registrant information (email, phone number, name, etc.)
- Be sure to leverage your normal Google-Fu, Shodan, etc. and try to pull out additional CIDRs, company Acquisitions, etc.
- Hands on labs are a huge focus for value add when it comes to gaining a technical skill
- eLearnSecurity’s PTSv3 good introduction to penetration testing – Full blog post/review coming soon!