Section 5.5

Question 1

What is the Reconnaissance process in a Pen Test?

Answer 1

This is the part in which the attacker will get information about the environment before the attack. They will gather information to understand the security posture (firewalls, security configurations), create a network map, etc.

Question 2

What is Passive Reconnaissance?

Answer 2

Passive Reconnaissance is using indirect sources to find out more about the companies network infrastructure. This means that you can use their social media, website, other companies they do business with.

Question 3

What is Active Reconnaissance?

Answer 3

Active Reconnaissance is when you’re actively on the network trying to gather information using port scanning, dns queries, os scans, service scans, etc.