CAPEC-408 - Information Gathering from Traditional Sources

An attacker engages in information gathering activities from traditional sources which are typically open, publicly available sources of information that don't require any illegal activity to obtain. Tradition sources can include corporate websites, DNS (Domain Name Service) records, or even social media sites such as blogs or wikis. The goal is to collect as much information as possible so as to construct an accurate model that aids the attacker in conducting further social engineering attacks.