Gathering info on a computer user without social engineering

Discuss the many weaknesses of browser security and ways to mitigate the threat

Gathering info on a computer user without social engineering

Post by ampakine on Mon Aug 08, 2011 10:01 am
([msg=60673]see Gathering info on a computer user without social engineering[/msg])

Excluding social engineering techniques and delivering payloads via vulnerable services, how would you go about gathering information on an internet user you know absolutely nothing about? First thing I would do is get their IP by directing them to my webpage (alright that bit involves a bit of social engineering) then I'd run a whois on their IP to find out about their ISP. Then I'd run various nmap scans on their IP to start finding out about their router. Thats pretty much all I would know how to do at the moment.

BTW heres a story involving info gathering if you wanna read it: About a year ago I got in an argument on youtube with someone on youtube and the guy told me "I'm a hacker, I'm going to hack youtube to get your IP then use it to find out where you live and kill you and your family" or something to that effect so I decided to play a little prank on him. I gave him a link to a dummy website to get his IP then ran a whois on it. To my surprise his ISP was located in Zagreb, Croatia. Found that strange because his English was very good but he didn't seem like he knew enough about IT to be using a proxy. Anyhow I sent him a PM saying "by the way whats the weather like in Zagreb?" and he replied saying "How the fuck did you know I'm in Zagreb?" and started apologising for threatening me and he seemed to genuinely think I knew where he lived and was frightened for his life. I felt bad and told him I was only joking and tried to explain to him that having someones IP doesn't mean you can get their address but he didn't reply after that lol.
ampakine
Experienced User
Experienced User
 
Posts: 65
Joined: Tue May 31, 2011 5:21 pm
Blog: View Blog (0)


Re: Gathering info on a computer user without social engineering

Post by mShred on Mon Aug 08, 2011 2:12 pm
([msg=60676]see Re: Gathering info on a computer user without social engineering[/msg])

ampakine wrote:Excluding social engineering techniques and delivering payloads via vulnerable services, how would you go about gathering information on an internet user you know absolutely nothing about? First thing I would do is get their IP by directing them to my webpage (alright that bit involves a bit of social engineering) then I'd run a whois on their IP to find out about their ISP. Then I'd run various nmap scans on their IP to start finding out about their router. Thats pretty much all I would know how to do at the moment.

For learning about someone's computer, there are many different ways. Keep in mind that a lot of house computers won't be running vulnerable services compared to a webserver. For a webserver, there are various enumeration and blackbox techniques to try to see what's goin on with the computer. But for a person, social networking is a good way to find out about them. But without social engineering, all you could do is look at their profile and whatnot. Even posing as someone else would be considered social engineering.
Image

For those about to rock.
User avatar
mShred
Administrator
Administrator
 
Posts: 1689
Joined: Tue Jun 22, 2010 4:22 pm
Blog: View Blog (2)


Re: Gathering info on a computer user without social engineering

Post by tremor77 on Tue Aug 09, 2011 10:09 am
([msg=60710]see Re: Gathering info on a computer user without social engineering[/msg])

You can do a lot without social engineer. You can also do a lot without getting someone to visit a site with an IP/info logger (which can return invalid results if they use proxies)

It's called Doxing... and if you ask the right people here on HTS they'll tell you that I'm pro :geek: - actually it's just so damn easy. First off, you start with a simple, organizational strategy and collect information. From something as simple as a screen name on Youtube or even a forum like HTS - you can track down, collect and sort out information on an individual simple by using Google and other various resources (facebook, youtube, intellius, spokeo and a whole lot more)

For example I took your screen name "ampakine" and did quick cross check. I found a Twitter user named Stephen B-------, also found the same SN ampakine on Klout, also on zoklet.net and sciforums.com. I found photobucket, kongregate and other profiles that offered some different directions... but I went with our Stephen potentially a male, 21 years old from the Boston area. That took less time that it has to write this post. I could be lightyears off however - I was tempted to check a lead on another guy in Ireland :roll:

To do it all properly I would have to review all your posts on this forum, track any links that you posted and cross reference some other info.. if I stalled out at any point I would resort to sending you a PM to a PURL and hoping you might visit it to kick start the investigation (which would be social engineering) but the whole point behind Doxing is to do as much as you can without letting on to the target that you are doing it. It's all research.. and it's hella-fun.
Image
User avatar
tremor77
Contributor
Contributor
 
Posts: 866
Joined: Wed Mar 31, 2010 12:00 pm
Location: New York
Blog: View Blog (0)


Re: Gathering info on a computer user without social engineering

Post by rajival on Sun Aug 14, 2011 4:19 am
([msg=60886]see Re: Gathering info on a computer user without social engineering[/msg])

I didn't know you can actually do that without social engineer. I'm not a pro hacker, I'm a noob trying to learn from time to time. What are the limitations though? I mean, is it just the location and ISP that you can find out with someone's IP? I'm pretty scared with what's happening online especially finding personal information here which can be used to threaten or actually put lives at risk. I'm also trying to find solutions to stuff like that for myself and especially my family's safety.

I'm a bit frustrated on how "good" technology is now which on the other hand can be disturbing as well. I hope somebody develops something that would give me back that secured feeling.
User avatar
rajival
New User
New User
 
Posts: 11
Joined: Tue Aug 09, 2011 12:28 am
Blog: View Blog (0)


Re: Gathering info on a computer user without social engineering

Post by mShred on Sun Aug 14, 2011 11:29 am
([msg=60894]see Re: Gathering info on a computer user without social engineering[/msg])

rajival wrote:I didn't know you can actually do that without social engineer. I'm not a pro hacker, I'm a noob trying to learn from time to time. What are the limitations though? I mean, is it just the location and ISP that you can find out with someone's IP? I'm pretty scared with what's happening online especially finding personal information here which can be used to threaten or actually put lives at risk. I'm also trying to find solutions to stuff like that for myself and especially my family's safety.

I'm a bit frustrated on how "good" technology is now which on the other hand can be disturbing as well. I hope somebody develops something that would give me back that secured feeling.

Yeah well it all depends on how you distribute your information. Sometimes all it takes is a website, or an IP, or another username, for someone to figure who you are. With that, they can figure out where you live, social networking, things like that. As tremor77 said, it is pretty damn fun though.
Image

For those about to rock.
User avatar
mShred
Administrator
Administrator
 
Posts: 1689
Joined: Tue Jun 22, 2010 4:22 pm
Blog: View Blog (2)


Re: Gathering info on a computer user without social engineering

Post by ampakine on Sun Aug 14, 2011 3:17 pm
([msg=60896]see Re: Gathering info on a computer user without social engineering[/msg])

tremor77 wrote:You can do a lot without social engineer. You can also do a lot without getting someone to visit a site with an IP/info logger (which can return invalid results if they use proxies)

Highly informative reply, nice one. Hadn't even heard of doxing before reading that.

tremor77 wrote:For example I took your screen name "ampakine" and did quick cross check. I found a Twitter user named Stephen B-------, also found the same SN ampakine on Klout, also on zoklet.net and sciforums.com. I found photobucket, kongregate and other profiles that offered some different directions... but I went with our Stephen potentially a male, 21 years old from the Boston area. That took less time that it has to write this post. I could be lightyears off however - I was tempted to check a lead on another guy in Ireland :roll:

I watched a video on irongeek.com on "google stalking" that talked about similar things. I seem to have been born with awareness about stuff like this which is why ever since I started using the internet I have gone out of my way to make sure I never provide any personal information and methods to relate my account on one site to accounts on others. That twitter account isn't mine but the zoklet account is. Although I consciously consider what information I post knowing that anyone can start connecting dots like you did, you can probably learn a lot about me by reading my threads on this forum as well as zoklet. That sciforums account is also mine. My defense mechanism is I create personas/identities for people to uncover. I will use the same username on a few different forums and provide leads which I know someone stalking me will follow. Like this I can easily send a google stalker on a wild goose chase. Your reply gave me a lot of insight, thanks.

BTW what search term did you use to find forum members with the username ampakine?
ampakine
Experienced User
Experienced User
 
Posts: 65
Joined: Tue May 31, 2011 5:21 pm
Blog: View Blog (0)


Re: Gathering info on a computer user without social engineering

Post by tremor77 on Mon Aug 15, 2011 9:40 am
([msg=60913]see Re: Gathering info on a computer user without social engineering[/msg])

ampakine wrote:BTW what search term did you use to find forum members with the username ampakine?


I particularly like these google searches: "profile ampakine" & "user ampakine" - which grab a quick and narrow slice of the web.
Image
User avatar
tremor77
Contributor
Contributor
 
Posts: 866
Joined: Wed Mar 31, 2010 12:00 pm
Location: New York
Blog: View Blog (0)


Re: Gathering info on a computer user without social engineering

Post by ampakine on Tue Aug 16, 2011 5:20 pm
([msg=60927]see Re: Gathering info on a computer user without social engineering[/msg])

Even better is "allintitle:ampakine profile" because member profile pages usually contain the username in the title.
ampakine
Experienced User
Experienced User
 
Posts: 65
Joined: Tue May 31, 2011 5:21 pm
Blog: View Blog (0)


Re: Gathering info on a computer user without social engineering

Post by VPR3 on Tue Aug 16, 2011 6:15 pm
([msg=60929]see Re: Gathering info on a computer user without social engineering[/msg])

Are you on shroomery as well and a few other forums for what appears to be reacreational drug users?
Your also appear to be a undergrad student at ********** too.
VPR3
Poster
Poster
 
Posts: 161
Joined: Fri Apr 22, 2011 11:35 am
Blog: View Blog (0)


Re: Gathering info on a computer user without social engineering

Post by tremor77 on Wed Aug 17, 2011 7:48 am
([msg=60938]see Re: Gathering info on a computer user without social engineering[/msg])

I did this for myself and apparently I have a profile on an amateur euro porn blog... sad thing is, I can't be sure if it's actually my account or not... I do some wierd things after 3 or 4 days of sleep deprivation.
Image
User avatar
tremor77
Contributor
Contributor
 
Posts: 866
Joined: Wed Mar 31, 2010 12:00 pm
Location: New York
Blog: View Blog (0)


Next

Return to Web

Who is online

Users browsing this forum: No registered users and 0 guests