A security analyst is hired to assess a software company. The analyst plans to gather information from public sources as well as conduct a network probe. Which tactic is most likely to avoid detection by the company's internal monitoring systems?
Reviewing job boards for relevant postings about the company's technology stack
Sending crafted protocol requests to the organization's servers to retrieve banner details
Capturing network packets from internal systems at the company
Using a network scanner to enumerate open services on the target
Searching public job boards is a form of passive reconnaissance: it relies solely on publicly available information and does not interact with the target's assets, so it generates no traffic that the organization can monitor. Network scanning, crafted protocol requests for banners, and internal packet captures all constitute active methods that transmit or collect data across the target's infrastructure, leaving evidence that intrusion-detection or logging tools can record.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
Why is examining job boards considered a safer approach for information gathering?
Open an interactive chat with Bash
What tools can be used to gather data from job boards effectively?
Open an interactive chat with Bash
What are the risks of using active techniques, like probing services, for reconnaissance?