What are the various steps in the pre-attack phase?

Home / Hacking, News, Security / What are the various steps in the pre-attack phase?

October 2, 2008 PlanetCreator 0 Comments 0 tags

In the pre-attack phase, there are seven steps, which have been defined by the EC-Council, as follows:

1. Information gathering
2. Determining network range
3. Identifying active machines
4. Finding open ports and applications
5. OS fingerprinting
6. Fingerprinting services
7. Mapping the network

Explore More

IP spoofing

IP spoofing is about the most advanced attack that can be executed on a computer system. IP spoofing, if done correctly, is one of the smoothest and hardest attacks on

Clickjacking technique called “content extraction”

Cookiejacking is a UI redressing attack that allows an attacker to hijack his victim’s cookies without any XSS. Clickjacking attacks have been widely adopted by attackers worldwide on popular websites

EtterCap – ARP Spoofing And Beyond

When it comes to Network Security, my philosophy is – “You can’t afford to know less than the Hacker.” This means that in order to protect ourselves effectively, we need

[local] glibc 2.38 - Buffer Overflow
on February 11, 2026 at 12:00 am
glibc 2.38 - Buffer Overflow
[remote] Windows 10.0.17763.7009 - spoofing vulnerability
on February 11, 2026 at 12:00 am
Windows 10.0.17763.7009 - spoofing vulnerability
[webapps] motionEye 0.43.1b4 - RCE
on February 11, 2026 at 12:00 am
motionEye 0.43.1b4 - RCE
[webapps] FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
on February 4, 2026 at 12:00 am
FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
[local] Docker Desktop 4.44.3 - Unauthenticated API Exposure
on February 4, 2026 at 12:00 am
Docker Desktop 4.44.3 - Unauthenticated API Exposure