Information Gathering
๐ฉ CTFs & Labs ๐งช¶
โ Quizzes¶
Introduction To Information Gathering¶
| Question | Answer |
|---|---|
| Port scanning is a passive reconnaissance technique. | False |
Website Recon & Footprinting¶
| Question | Answer |
|---|---|
| What file contains a list of directories that are not indexed by search engines? | robots.txt |
Whois Enumeration¶
| Question | Answer |
|---|---|
| The Whois lookup utility can be used to identify the nameservers of a particular domain. | True |
DNS Recon¶
| Question | Answer |
|---|---|
| Which one of the following DNS records is used to resolve a domain to a mail server? | MX |
Subdomain Enumeration With Sublist3r¶
| Question | Answer |
|---|---|
| Sublist3r can be used to perform a subdomain brute force. | True |
Google Dorks¶
| Question | Answer |
|---|---|
| Which one of the following Google search queries can be used to search for subdomains for the domain INE.com? | site:*.ine.com |
Email Harvesting With theHarvester¶
| Question | Answer |
|---|---|
| theHarvester can also be used to perform subdomain enumeration. | True |
DNS Zone Transfers¶
| Question | Answer |
|---|---|
| Which one of the following DNS records is used to specify domain aliases? | CNAME |
Port Scanning With Nmap¶
| Question | Answer |
|---|---|
| Which one of the following Nmap scans can be used to perform a sneaky scan? | nmap -sV -T1 192.168.1.200 |