Overview What You Will Learn Curriculum Instructor

Course Overview

In today’s security landscape, reconnaissance is one of the most critical phases of penetration testing and ethical hacking. Understanding how attackers gather intelligence allows defenders and red teamers alike to build more secure environments. Mastering Web and Infrastructure Reconnaissance provides learners with the practical skills needed to collect, organize, and analyze public and internal data related to web infrastructure, technologies, people, and networks. Whether you are a cybersecurity enthusiast or a professional, this course teaches the foundational techniques attackers use—making it essential knowledge for defense and offense.

This course begins with setting up a structured recon environment using tools like Kali, Flameshot, and Metasploitable. It then explores advanced Google search tricks for uncovering sensitive web information, and dives into LinkedIn-based OSINT for identifying people, tech stacks, and office locations. Learners will perform DNS reconnaissance using tools like dig, dnsenum, and DNSDumpster, followed by network scanning with ARIN, Nmap, and Whois. Later modules focus on web service analysis with BuiltWith, Nikto, BurpSuite, and more, while deeper server and cache analysis is explored in Section Seven. The course concludes with internal reconnaissance techniques using Metasploit and Nmap within a LAN environment.

This course equips learners with comprehensive reconnaissance skills—from open-source intelligence to internal scanning—enabling detailed reporting, vulnerability discovery, and preparation for advanced penetration testing.

What You Will Learn

  • Understand a structured approach to reconnaissance to ensure completeness and accuracy
  • Level-up your existing tool knowledge by getting more out of the ones that you know about and learning new ones
  • Analyze some of the typical reconnaissance results that will affect testing like hosted environments , content delivery networks , outsourced DNS , domain controllers , print servers etc.
  • Skills to record findings as you conduct your testing

Program Curriculum

  • Installing Kali
  • Installing Flameshot
  • Installing Metasploitable
  • Building a Recording Structure
  • $7 Million Cybersecurity Scholarship by EC-Council
  • Chapter 1 Quiz

  • Introduction to Google Advanced Operators
  • Enumerating Web Hosts with Google
  • Detecting Login Pages and Other Fun Things
  • Reading the Fine Developer Manual
  • Find the Not-So Hidden Documents
  • Use Case: Find the Shopping Cart
  • Use Case: Build a New Site Alerting System
  • Reporting on Google Reconnaissance
  • Chapter 2 Lab
  • Chapter 2 Quiz

  • Find the People and Their Skills using LinkedIn
  • Find the Technology Stack
  • Find the Office and Datacenter Locations
  • Reporting on OSINT Findings
  • Chapter 3 Quiz

  • Exploring Hosts with Dig
  • Dumping Zone Files with DNSEnum
  • Typical DNS Query Results
  • Finding Email Hosts with MX Records
  • Passive DNS Recon with DNSDumpster
  • Recording DNS Results
  • Chapter 4 Lab
  • Chapter 4 Quiz

  • Finding Network Blocks with ARIN
  • Learning About Hosting Providers with Whois and Traceroute
  • Finding Active Hosts with Nmap
  • Nmap Port Enumeration and OS Detection
  • Hiding Yourself with Nmap Stealth Scanning
  • Reporting on Network Scanning
  • Chapter 5 Lab
  • Chapter 5 Quiz

  • Passive Scanning Using BuiltWith
  • Finding TLS Vulnerabilities with SSL Labs
  • Finding Paths and Vulnerabilities with Nikto
  • Vulnerability Scanning with Skipfish
  • Locate other paths with Parsero and Dirbuster
  • Spidering with BurpSuite
  • Analyzing web Forms with BurpSuite
  • Reporting on Web Vulnerabilities
  • Chapter 6 Lab
  • Chapter 6 Quiz

  • Building and Exploring a Server
  • Exploring Webservers
  • Web Application Frameworks
  • Application Cache Servers
  • MySQL and other Database Servers
  • Reporting on Server Exploration
  • Chapter 7 Lab
  • Chapter 7 Quiz

  • Finding Internal Network Resources
  • Recon with Nmap on the Inside
  • Network Scanning with Nmap inside Metasploit
  • Stealthier Internal Scanning
  • Metasploit and Vulnerability Scanning
  • Reporting on Internal Recon
  • Chapter 8 Lab
  • Chapter 8 Quiz
Load more modules

Instructor

Michael Smith

Michael Smith is the CEO and CSO of Rising Tide Cybersecurity Management, an independent consultancy that assists large-scale websites. Prior to going independent, Mr. Smith spent 10 years at Akamai Technologies in a variety of roles including Security CTO and CSIRT Director. He lived and worked in the Washington, DC area for 10 years as a security technologist and assessor.

Join over 1 Million professionals from the most renowned Companies in the world!

certificate

Fastest Way to Level Up Your Cybersecurity Skills

Invest in your future with flexible subscription plans that give you access to the world’s largest online cybersecurity course library. Whether you're exploring cybersecurity courses for beginners or advancing your expertise,
access in-demand courses, practical labs, and CTF challenges designed to support continuous learning.

Monthly Plans
Annual Plans
Save 20% with our annual plans!

Pro

Build your cybersecurity skills with 900+ bite-sized courses and curated learning paths designed for continuous learning.

$ 69.00
Billed monthly or $599.00 billed annually
Get Started Now
Start your 7-day trial for $1

What is included

  • 880+ Premium Short Courses
  • 70+ Structured Learning Paths
  • Validation of Completion with all courses and learning paths
  • New Courses added every month
Early Access Offer

Pro +

Develop real-world cybersecurity skills through hands-on labs and CTF challenges designed for practical learning.

$ 79.00
Billed monthly or $699.00 billed annually
Get Started Now
Start your 7-day trial for $1

Everything in Pro, Plus:

  • 1600+ Hands-on lab exercises with guided instructions
  • 150+ CTF Challenges with detailed walkthroughs
  • New Hands-on Labs and Challenges added every month

Related Courses

  • Bootstrap 4 Quick Website Bootstrap Components Course
    Short Course

    Bootstrap 4 Quick Website Bootstrap Components Course

    Software Development

    Explore the basics of Bootstrap and learn to create a website...

    $49.99

    Beginner

    1 hr 30 m

  • CCNA - Understanding Routers and Switches
    Short Course

    CCNA - Understanding Routers and Switches

    Security Architecture and Operations

    A comprehensive guide to understanding the in-depth functioni...

    $49.99

    Intermediate

    2 hr 0 m

  • The Complete Full-Stack JavaScript Course
    Short Course

    The Complete Full-Stack JavaScript Course

    Software Development

    Learn full-stack web development using JavaScript (ReactJS, N...

    $79.99

    Beginner

    24 hr 17 m

  • React.JS for Ecommerce: Building a Store with React.JS
    Short Course

    React.JS for Ecommerce: Building a Store with React.JS

    DevSecOps

    From React.js Fundamentals to Crafting an Online Storefront

    $49.99

    Advanced

    3 hr 30 m

  • CISSP Certification Domains 5, 6, 7, and 8 Video Training
    Short Course

    CISSP Certification Domains 5, 6, 7, and 8 Video Training

    Cybersecurity

    This course is ideal for individuals who desire to pass the I...

    $69.99

    Intermediate

    6 hr 30 m

  • Helm 3 - Package Manager for Kubernetes
    Short Course

    Helm 3 - Package Manager for Kubernetes

    Software Development

    A must tool for every DevOps engineer

    $49.99

    Intermediate

    1 hr 27 m

  • Learn Ethical Hacking by Hacking Real Websites Legally
    Short Course

    Learn Ethical Hacking by Hacking Real Websites Legally

    Vulnerability Assessment and Pentesting

    Fun way to learn ethical hacking by playing online hacking ga...

    $69.99

    Beginner

    4 hr 18 m

  • Mastering Ansible Playbooks: Debugging and Security
    Short Course

    Mastering Ansible Playbooks: Debugging and Security

    Software Development

    Securing and Automating Linux and Windows Systems with Advanc...

    $99.99

    Advanced

    5 hr 34 m

1 50
View all