<aside> <img src="/icons/search_gray.svg" alt="/icons/search_gray.svg" width="40px" /> Cybersecurity reconnaissance is the preliminary phase of a cyber attack. It involves the systematic surveying or scanning of systems, networks, or web applications to gather information about potential vulnerabilities that can be exploited.

</aside>

Importance of Reconnaissance

• Crucial step in penetration testing
• Identifies potential vulnerabilities in the target system
• Helps plan the attack to reduce the risk of detection and failure

Types of Reconnaissance

Active Reconnaissance

• Engaging with the target system directly, such as scanning for open ports using tools like Nmap

Passive Reconnaissance

• Gathering information without direct engagement, like using open-source intelligence or WHOIS to collect data

Reconnaissance and Environment Types

Known Environment

• Penetration testers have detailed information about the target infrastructure
• Focuses on known assets
• Evaluates vulnerabilities and weaknesses
• Aims to understand exploitability and potential damages
• Resembles and insider threat scenario

Partially Known Environment

• Testers have limited information, simulating a scenario where an attacker has partial inside knowledge
• Focus on discovering and navigating the broader environment