16 Questions
What is the primary goal of the reconnaissance phase in a penetration test?
To identify key systems and understand the network layout
What is the purpose of creating a network map during a penetration test?
To understand the IP address schemes and device locations
What is an example of passive footprinting in a penetration test?
Analyzing social media pages for organizational information
What is the benefit of focusing on key systems during a penetration test?
It allows for a more targeted attack on the network
What is the purpose of identifying security tools and devices during the reconnaissance phase?
To understand what security measures are in place
What is the advantage of gathering information during the reconnaissance phase?
It provides a more comprehensive understanding of the network layout
What is open source intelligence commonly referred to as?
OSINT
What is the purpose of wardriving or warflying?
To gather information about wireless networks
What is the difference between passive and active footprinting?
Passive involves gathering information without sending any data, active involves sending data to gather information
What is the purpose of osintframework.com?
To provide a framework for gathering open source intelligence
What can be gathered through open source intelligence?
Username, email address, search engine information, dating sites, archives, and the dark web
What is the purpose of tools like Kismet and inSSiDer?
To gather information about wireless networks
What can be determined using tools like unmap?
The version of an operating system or service
What is a risk of active footprinting?
Someone may see that you are performing reconnaissance tasks
What is the purpose of ping scans?
To gather information about devices on a network
What can be seen on wigle.net?
A combination of wardriving results overlaid onto a map
Learn about the various methods of gathering information about an organization through Open-Source Intelligence (OSINT). This includes scouring online forums, examining dumpsters, analyzing interactions with other businesses, and more. Test your knowledge on these techniques and see how they can be used in social engineering and intel gathering.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free