1_8_2 Section 1 – Attacks, Threats, and Vulnerabilities - 1.8 – Penetration Testing - Reconnaissance

Choose a study mode

Play Quiz
Study Flashcards
Spaced Repetition
Chat to Lesson

Podcast

Play an AI-generated podcast conversation about this lesson
Download our mobile app to listen on the go
Get App

Questions and Answers

What is the primary goal of the reconnaissance phase in a penetration test?

  • To gather information about the organization's employees
  • To bypass security tools and devices
  • To identify key systems and understand the network layout (correct)
  • To launch a direct attack on the network

What is the purpose of creating a network map during a penetration test?

  • To understand the IP address schemes and device locations (correct)
  • To gain administrative access to the network
  • To launch a denial-of-service attack
  • To identify vulnerabilities in the network

What is an example of passive footprinting in a penetration test?

  • Analyzing social media pages for organizational information (correct)
  • Using a vulnerability scanner to identify open ports
  • Performing a DNS reverse lookup on the organization's domain
  • Conducting a social engineering attack on employees

What is the benefit of focusing on key systems during a penetration test?

<p>It allows for a more targeted attack on the network (C)</p> Signup and view all the answers

What is the purpose of identifying security tools and devices during the reconnaissance phase?

<p>To understand what security measures are in place (C)</p> Signup and view all the answers

What is the advantage of gathering information during the reconnaissance phase?

<p>It provides a more comprehensive understanding of the network layout (B)</p> Signup and view all the answers

What is open source intelligence commonly referred to as?

<p>OSINT (D)</p> Signup and view all the answers

What is the purpose of wardriving or warflying?

<p>To gather information about wireless networks (B)</p> Signup and view all the answers

What is the difference between passive and active footprinting?

<p>Passive involves gathering information without sending any data, active involves sending data to gather information (D)</p> Signup and view all the answers

What is the purpose of osintframework.com?

<p>To provide a framework for gathering open source intelligence (C)</p> Signup and view all the answers

What can be gathered through open source intelligence?

<p>Username, email address, search engine information, dating sites, archives, and the dark web (C)</p> Signup and view all the answers

What is the purpose of tools like Kismet and inSSiDer?

<p>To gather information about wireless networks (C)</p> Signup and view all the answers

What can be determined using tools like unmap?

<p>The version of an operating system or service (B)</p> Signup and view all the answers

What is a risk of active footprinting?

<p>Someone may see that you are performing reconnaissance tasks (A)</p> Signup and view all the answers

What is the purpose of ping scans?

<p>To gather information about devices on a network (C)</p> Signup and view all the answers

What can be seen on wigle.net?

<p>A combination of wardriving results overlaid onto a map (D)</p> Signup and view all the answers

Flashcards are hidden until you start studying

More Like This

Use Quizgecko on...
Browser
Open
Browser
Browser