Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

PenTest+ > Section 3: Passive Reconnaissance > Flashcards

Section 3: Passive Reconnaissance Flashcards

1
Q

Metagoofil

A

A Linux-based tool that can search the metadata associated with public documents located on a target’s website. This can be run on any OS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Fingerprinting Organizations with Collected Archives (FOCA)

A

▪ Used to find metadata and hidden information in collected documents from an organization.

GUI version of Metagoofil, only runs on Windows.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

The Harvester

A

A program for gathering emails, subdomains, hosts, employee names, email addresses, PGP key entries, open ports, and service banners from servers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Recon-ng

A

Uses a system of modules to add additional features and functions for your use
▪ It is a cross-platform web reconnaissance framework

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Maltego

A

▪ A piece of commercial software used for conducting open-source
intelligence that visually helps connect those relationships
▪ It can automate the querying of public sources of data and then compare it with other info from various sources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Address (A) Record and AAAA Record

A

o Address (A) Record
▪ Links a hostname to an IPv4 address
o AAAA Record
▪ Links a hostname to an IPv6 address

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Canonical Name (CNAME) Record

A

Points a domain to another domain or subdomain

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Start of Authority (SOA) Record

A

Stores important information about a domain or zone

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Pointer (PTR) Record

A

Correlates an IP address with a domain name

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Text (TXT) Record

A

Adds text into the DNS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Service (SRV) Record

A

Specifies a host and port for a specific service

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

nslookup

A

A cross-platform tool used to query the DNS to provide the mapping between domain names and IP addresses or other DNS records

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

HTTP Methods

A

● GET
o The principal method used with HTTP and is used to
retrieve a resource
● POST
o Used to send data to the server for processing by the
requested resource
● PUT
o Creates or replaces the requested resource
● DELETE
o Used to remove the requested resource
● HEAD
o Retrieves the headers for a resource only and ignores the
body

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

HTTP Response Codes

A

200
o Indicates a successful GET or POST request (OK)

3xx
o Any code in this range indicates that a redirect has
occurred by the server

4xx
o Any code in this range indicates an error in the client
request

5xx
o Any code in this range indicates a server-side issue

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

URl Encoding

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Certificate Revocation List (CRL)

A

An online list of digital certificates revoked by the certificate authority

PenTest+ (22 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions