Passive Footprinting: Gathering OS Information on Target Organizations

Questions and Answers

What is the primary goal of passive footprinting in ethical hacking?

• To map the target system's network architecture
• To launch a direct attack on the target system
• To exploit vulnerabilities in the target system's operating system
• To gather information about the target system without being detected (correct)

What information can be obtained through passive footprinting techniques?

• The target system's user credentials and authentication mechanisms
• The target system's network architecture and firewall configuration
• Only the target system's IP address and hostname
• The target system's operating system, city, country, and IP address (correct)

What is the difference between active and passive footprinting?

• Active footprinting involves direct engagement with the target system, while passive footprinting does not (correct)
• Active footprinting is faster, while passive footprinting is slower
• Active footprinting is more reliable, while passive footprinting is less reliable
• Active footprinting is used for OS detection, while passive footprinting is used for network mapping

What is the purpose of using Censys web service in this lab?

To gather information about the target system's operating system (A)

What is the primary function of the 'What's that site running?' tool?

To extract information about a website's infrastructure and technologies used (C)

What type of footprinting is being demonstrated in the scenario described?

Passive footprinting (C)

What information can be gathered from the 'Site Report' page?

The website's background, network, and hosting history (C)

What is the purpose of the 'Look up' button in the 'What's that site running?' tool?

To gather information about a website's infrastructure (A)

What is the primary goal of gathering information about the target organization's systems and networks?

To identify potential vulnerabilities (C)

What is the relevance of the 'CEH Lab Manual' to the scenario described?

It is a manual for ethical hacking and countermeasures (D)

What type of footprinting is being demonstrated in the given screenshot?

Passive footprinting (B)

What is the primary benefit of using tools like 'What's that site running?' for system information gathering?

To gather information about a website's infrastructure without actively engaging with the website (A)

What is the operating system of the host shown in the screenshot?

Ubuntu Linux 18.04 (A)

What is the purpose of the 'Basic Information' section in the screenshot?

To provide an overview of the system's details, such as operating system and running protocols (C)

What is the technique used to gather information about a target system's web server and its operating system?

Web server OS detection (B)

What is the benefit of gathering information about a target system's protocols and software?

To identify potential vulnerabilities (A)