1_8_2 Section 1 – Attacks, Threats, and Vulnerabilities - 1.8 – Penetration Testing - Reconnaissance

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to Lesson

Podcast

Play an AI-generated podcast conversation about this lesson

Questions and Answers

What is the primary goal of the reconnaissance phase in a penetration test?

  • To gather information about the organization's employees
  • To bypass security tools and devices
  • To identify key systems and understand the network layout (correct)
  • To launch a direct attack on the network

What is the purpose of creating a network map during a penetration test?

  • To understand the IP address schemes and device locations (correct)
  • To gain administrative access to the network
  • To launch a denial-of-service attack
  • To identify vulnerabilities in the network

What is an example of passive footprinting in a penetration test?

  • Analyzing social media pages for organizational information (correct)
  • Using a vulnerability scanner to identify open ports
  • Performing a DNS reverse lookup on the organization's domain
  • Conducting a social engineering attack on employees

What is the benefit of focusing on key systems during a penetration test?

<p>It allows for a more targeted attack on the network (C)</p> Signup and view all the answers

What is the purpose of identifying security tools and devices during the reconnaissance phase?

<p>To understand what security measures are in place (C)</p> Signup and view all the answers

What is the advantage of gathering information during the reconnaissance phase?

<p>It provides a more comprehensive understanding of the network layout (B)</p> Signup and view all the answers

What is open source intelligence commonly referred to as?

<p>OSINT (D)</p> Signup and view all the answers

What is the purpose of wardriving or warflying?

<p>To gather information about wireless networks (B)</p> Signup and view all the answers

What is the difference between passive and active footprinting?

<p>Passive involves gathering information without sending any data, active involves sending data to gather information (D)</p> Signup and view all the answers

What is the purpose of osintframework.com?

<p>To provide a framework for gathering open source intelligence (C)</p> Signup and view all the answers

What can be gathered through open source intelligence?

<p>Username, email address, search engine information, dating sites, archives, and the dark web (C)</p> Signup and view all the answers

What is the purpose of tools like Kismet and inSSiDer?

<p>To gather information about wireless networks (C)</p> Signup and view all the answers

What can be determined using tools like unmap?

<p>The version of an operating system or service (B)</p> Signup and view all the answers

What is a risk of active footprinting?

<p>Someone may see that you are performing reconnaissance tasks (A)</p> Signup and view all the answers

What is the purpose of ping scans?

<p>To gather information about devices on a network (C)</p> Signup and view all the answers

What can be seen on wigle.net?

<p>A combination of wardriving results overlaid onto a map (D)</p> Signup and view all the answers

Flashcards are hidden until you start studying

More Like This

Mastering OSINT and SOCMINT
80 questions

Mastering OSINT and SOCMINT

UndauntedQuail avatar
UndauntedQuail
Master the Art of Open-Source Intelligence (OSINT)
5 questions

OSINT Quiz and Test: Master Open-Source Intelligence

IrresistibleHippopotamus avatar
IrresistibleHippopotamus
Advanced OSINT Techniques Quiz
29 questions

Advanced OSINT Techniques Quiz

saleemonline avatar
saleemonline
Use Quizgecko on...
Browser
Open
Browser
Browser