Javatpoint Logo
Javatpoint Logo

Hacking Process

The hacking process has five phases. These are as follows:

  1. Reconnaissance
  2. Scanning
  3. Access
  4. Maintaining access
  5. Clearing tracks

Reconnaissance

The reconnaissance phase is the first phase of the hacking process. This phase is also known as information gathering and footprinting. This phase is very time-consuming. In this phase, we observe and gather all the networks and servers that belong to an organization. We will learn everything about the organization like internet searching, social engineering, non-intrusive network scanning, etc. Depending upon the target, the Reconnaissance phase can last days, weeks or months. The main purpose of this phase is to learn about the potential target as much as possible. We normally collect information about three groups, which are as follows:

  • People Involved
  • Host
  • Network

Footprinting is of two types:

  1. Active: In the active reconnaissance, we directly interact with the target to get the information. To scan the target, we can use the Nmap tool.
  2. Passive: In passive reconnaissance, we indirectly collect information about the target. We can get information about the target from public websites, social media, etc.

Scanning

After gathering all the target organization's information, the exploitable vulnerabilities are scanned by the hacker in the network. In this scan, the hacker will look for weaknesses like outdated applications, open services, open ports, and the equipment types used on the network.

The scanning is of three types:

Port scanning: In this phase, we scan the target to get information like live systems, open ports, various systems that are running on the host.

Vulnerability scanning: In this phase, we check the target for weaknesses that can be exploited. This scan can be done using automatic tools.

Network Mapping: In this, we draw a network diagram of available information by finding the routers, topology of the network, firewall servers, and host information. In the hacking process, this map may serve as an important piece of information.

Gaining access

In this phase, the hacker gains access to sensitive data using the previous phase's knowledge. The hackers use this data and the network to attack other targets. In this phase, the attackers have some control over other devices. An attacker can use various techniques like brute-forcing to gain access to the system.

Maintaining access

In this phase, to maintain access to devices, hackers have various options, like creating a backdoor. A persistent attack on the network can be maintained by the hacker using the backdoor. Without fear of losing access to the device, the hacker can perform an attack on the device they have gained control of. Backdoors are noisy. The chances of a hacker being discovered when a backdoor is created. The backdoor leaves a larger footprint for the IDS (intrusion detection system). Using the backdoor, a hacker can access the system any time in the future.

Clearing Tracks

An ethical hacker will never want to leave a track about the activities while hacking. So all the files which are related to the attack, he has to remove it. The clearing tracks phase's main purpose is to remove all traces through which no one can find him.

Next TopicImportance of Ethical hacking




Youtube For Videos Join Our Youtube Channel: Join Now

Feedback

Help Others, Please Share

facebook twitter pinterest

Learn Latest Tutorials

Splunk tutorial

Splunk
SPSS tutorial

SPSS
Swagger tutorial

Swagger
T-SQL tutorial

Transact-SQL
Tumblr tutorial

Tumblr
React tutorial

ReactJS
Regex tutorial

Regex
Reinforcement learning tutorial

Reinforcement Learning
R Programming tutorial

R Programming
RxJS tutorial

RxJS
React Native tutorial

React Native
Python Design Patterns

Python Design Patterns
Python Pillow tutorial

Python Pillow
Python Turtle tutorial

Python Turtle
Keras tutorial

Keras

Preparation

Aptitude

Aptitude
Logical Reasoning

Reasoning
Verbal Ability

Verbal Ability
Interview Questions

Interview Questions
Company Interview Questions

Company Questions

Trending Technologies

Artificial Intelligence

Artificial Intelligence
AWS Tutorial

AWS
Selenium tutorial

Selenium
Cloud Computing

Cloud Computing
Hadoop tutorial

Hadoop
ReactJS Tutorial

ReactJS
Data Science Tutorial

Data Science
Angular 7 Tutorial

Angular 7
Blockchain Tutorial

Blockchain
Git Tutorial

Git
Machine Learning Tutorial

Machine Learning
DevOps Tutorial

DevOps

B.Tech / MCA

DBMS tutorial

DBMS
Data Structures tutorial

Data Structures
DAA tutorial

DAA
Operating System

Operating System
Computer Network tutorial

Computer Network
Compiler Design tutorial

Compiler Design
Computer Organization and Architecture

Computer Organization
Discrete Mathematics Tutorial

Discrete Mathematics
Ethical Hacking

Ethical Hacking
Computer Graphics Tutorial

Computer Graphics
Software Engineering

Software Engineering
html tutorial

Web Technology
Cyber Security tutorial

Cyber Security
Automata Tutorial

Automata
C Language tutorial

C Programming
C++ tutorial

C++
Java tutorial

Java
.Net Framework tutorial

.Net
Python tutorial

Python
List of Programs

Programs
Control Systems tutorial

Control System
Data Mining Tutorial

Data Mining
Data Warehouse Tutorial

Data Warehouse