Module 2: Reconnaissance

Question 1

Reconnaissance .vs. Footprinting?

Answer 1

Reconnaissance is an overarching term for gathering information on your target.

Footprinting is about mapping out the landscape from a high level. getting the networks/OS etc

Question 2

What is Active Footprinting

Answer 2

requires the attacker to touch the device/network etc

Question 3

What is Passive Footprinting

Answer 3

Involves getting information from public sources.

Question 4

What is Google Dorking?

Answer 4

using advanced google searching to gain info or for nefarious purposes. Also called google hacking

Question 5

What is DNS footprinting

Answer 5

Things like a WHOIS or a DNS lookup

Question 6

What is nslookup

Answer 6

name server lookup

Retrieves the relevant address information directly from the DNS cache

Question 7

What is dig command

Answer 7

a Linux command that tests a DNS query

Question 8

What is Traceroute

Answer 8

command sends echo requests to the destination with incrementing TTL values to find the route

Question 9

What is type 11 code 0 ICMP Code

Answer 9

TTL value Expired

Question 10

What is type 3 Code 13 ICMP Code

Answer 10

packet has been blocked.

Question 11

what is the OSRFramework?

Answer 11

multiple OSINT tools. gathers username, domain name, phonenumbers etc