Passive Reconnaissance Room Teaches you about getting public information on your target without interacting with it, it’s pretty simple and easy room so only answers will be here in case you got stuck some where.
it’s also part of Jr Penetration Tester
You visit the Facebook page of the target company, hoping to get some of their employee names. What kind of reconnaissance activity is this? (A for active, P for passive)
PYou ping the IP address of the company webserver to check if ICMP traffic is blocked. What kind of reconnaissance activity is this? (A for active, P for passive)
AYou happen to meet the IT administrator of the target company at a party. You try to use social engineering to get more information about their systems and network infrastructure. What kind of reconnaissance activity is this? (A for active, P for passive)
AWhen was TryHackMe.com registered?
20180705What is the registrar of TryHackMe.com?
namecheap.comWhich company is TryHackMe.com using for name servers?
cloudflare.comCheck the TXT records of thmlabs.com. What is the flag there?
THM{a5b83929888ed36acb0272971e438d78}Lookup tryhackme.com on DNSDumpster. What is one interesting subdomain that you would discover in addition to www and blog?
remoteAccording to Shodan.io, what is the 2nd country in the world in terms of the number of publicly accessible Apache servers?
GermanyBased on Shodan.io, what is the 3rd most common port used for Apache?
8080Based on Shodan.io, what is the 3rd most common port used for nginx?
8888and that will be all for this room.
Recent Comments