Task1: Perform passive information gathering#

• Open your web browser and in your search engine (eg www.bing.com) search for site:example.com filetype:pdf
• Replace example.com with an actual website.

Task2: Perform passive information gathering with Whois Lookup#

1. Download whois from this link https://learn.microsoft.com/en-us/sysinternals/downloads/whois
2. Extract the zip file
3. Open Command Prompt and navigate to (cd C:\Users\colli\Downloads\WhoIs) the directory of the extracted
4. Type whois brookes.ac.uk

1	2	3-4

Task3: Perform passive information gathering with online tool Netcraft#

1. Go to https://sitereport.netcraft.com
2. Type brookes.ac.uk

1	2

Task4: Scan for open ports and vulnerabilities#

1. a. Download and Install Angry IP Scanner from https://angryip.org/download

Angry IP Scanner

1. Scan local devices for open ports and vulnerabilities.
2. Find the device with IP address 192.168.1.XX in the list

Task5: Attempt access public folder or login using weak credentials#

1. Attempt to gain access to the public folder of the device with IP address \\192.168.XX.XX in your previous task.
2. Attempt to gain access to the computer as a user using a weak password

1	2

Task5: Clear the Security event logs#

If you have been able to gain admin access, Open PowerShell on your machine and run:

1
Invoke-Command -ComputerName TARGET_PC -ScriptBlock { wevtutil cl Security }

(Replace TARGET_PC with the real hostname or IP.)

Task6: Document findings#

Create a simple report using:

1. Screenshots of scans.
2. A list of open ports and possible vulnerabilities.
3. Security recommendations.