Osint — CompTIA PenTest+ (PT0-002) Practice Questions
OSINT, or Open Source Intelligence, refers to the collection and analysis of information gathered from publicly available sources such as social media, corporate websites, public DNS, certificate transparency logs, and document metadata. On the PenTest+ exam, OSINT is a core component of the pre-engagement and reconnaissance phases because it can reveal employee names, email formats, technology stacks, and network ranges without alerting the target. Candidates are expected to know common OSINT tools and methodologies and understand how attackers leverage publicly available data to plan targeted attacks.
Free questions on osint
Which of the following is a passive information gathering technique?
Free question · easy · full answer + explanation
During information gathering, a penetration tester discovers email addresses of key employees through LinkedIn and public websites. What type of information gathering is this?
Free question · easy · full answer + explanation
Which of the following is NOT a common information gathering technique?
Free question · medium · full answer + explanation
More osint questions in the full bank
- What is the purpose of reviewing a company's LinkedIn or social media profiles during OSINT? Unlock answer & explanation →
- You need to gather information about a target organization before formal testing. Which passive reconnaissance technique is safest? Unlock answer & explanation →
- Which of the following is an example of passive information gathering? Unlock answer & explanation →