Information Gathering and Vulnerability Scanning

In this chapter, you will learn about

•   The difference between passive and active reconnaissance and vulnerability scanning, including the types of information to target

•   Several tools used for information gathering and vulnerability scanning and analyze their output

•   When to use passive reconnaissance, active reconnaissance, or vulnerability scanning during a pentest

•   Identifying and analyzing use cases for Nmap

Collecting as much information as you can about the targets is referred to as reconnaissance (recon), or discovery. Pentesters do this during planning, initial access, and post-exploitation phases of pentesting. Recon identifies or confirms the target scope, finds ...

Get CompTIA PenTest+ Certification All-in-One Exam Guide, Second Edition (Exam PT0-002), 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.