Reconnaissance
Reconnaissance is discovering and collecting information on a system and the victim. It is the planning phase for the adversaries.
OSINT (Open Source Intelligence) is also a part of Reconnaissance. By OSINT, We need to collect information such as company's size, email addresses, phone numbers from publicly available resources.
One OSINT Method - Email Harvesting Email harvesting is the process of obtaining email addresses from public, paid, or free services.
Tools: tool
- theHarvester - other than gathering emails, this tool is also capable of gathering names, subdomains, IPs, and URLs using multiple public data sources
- Hunter.io - this is an email hunting tool that will let you obtain contact information associated with the domain
- OSINT Framework - OSINT Framework provides the collection of OSINT tools based on various categories