- Mastering Kali Linux for Advanced Penetration Testing
- Robert W. Beggs
- 214字
- 2021-07-16 11:33:22
Chapter 3. Active Reconnaissance and Vulnerability Scanning
The objective of the reconnaissance phase is to gather as much information about the target as possible in order to facilitate the exploitation phase of the kill chain.
We have seen how passive reconnaissance, which is almost undetectable, can yield a significant amount of information about the target organization and its users.
Active reconnaissance builds on the results of open-source intelligence and passive reconnaissance, and focuses on using probes to identify the path to the target and the exposed attack surface of the target. In general, complex systems have a greater attack surface, and each surface may be exploited and then leveraged to support additional attacks.
Although active reconnaissance produces more information, and more useful information, interactions with the target system may be logged, triggering alarms by protective devices, such as firewalls and intrusion detection systems. As the usefulness of the data to the attacker increases, so does the risk of detection; this is shown in the following diagram:

To improve the effectiveness of active reconnaissance in providing detailed information, our focus will be on using stealthy, or difficult to detect, techniques.
In this chapter, you will learn:
- Stealth scanning strategies
- Network infrastructure, host discovery, and enumeration
- Comprehensive reconnaissance applications, especially
recon-ng
- Targeted vulnerability scanning
- Android應用安全實戰:Frida協議分析
- Kali Linux Social Engineering
- 工業互聯網安全防護與展望
- Metasploit Penetration Testing Cookbook(Third Edition)
- 黑客攻防入門秘笈
- API攻防:Web API安全指南
- Testing and Securing Android Studio Applications
- 網絡安全態勢感知
- INSTANT Kali Linux
- 聯邦學習原理與算法
- 網絡安全監控實戰:深入理解事件檢測與響應
- Practical Mobile Forensics
- 從實踐中學習Nmap滲透測試
- 社會工程:防范釣魚欺詐(卷3)
- 零信任安全從入門到精通