External Reconnaissance — CompTIA PenTest+ (PT0-002) Practice Questions
External reconnaissance is the passive and active process of gathering information about a target organization from publicly available sources before any direct interaction with the target's systems occurs. PT0-002 covers techniques such as DNS enumeration, WHOIS lookups, certificate transparency log analysis, and open-source intelligence gathering to build a profile of the target. This phase is foundational because the quality of information gathered directly determines which attack vectors are pursued in later phases.
Free questions on external reconnaissance
A company is concerned about their exposed attack surface. Which of the following is NOT part of the external attack surface?
Free question · medium · full answer + explanation