CEH Exam Module 2 Reconnaissance:
Information Gathering Questions and
Answers | Latest Version | 2024/2025 |
Rated A+
What is the ethical consideration when conducting reconnaissance?
✔✔ Ethical hackers must ensure they have proper authorization and avoid illegal activities
during the reconnaissance phase.
What are some examples of publicly available data that can aid in reconnaissance?
✔✔ Publicly available data includes government databases, corporate filings, and news articles
related to the target.
What role does reconnaissance play in the overall penetration testing process?
✔✔ Reconnaissance is a critical first step in penetration testing, providing the foundational
information needed for effective exploitation.
What is the significance of understanding a target's organizational structure during
reconnaissance?
1
,✔✔ Understanding an organization's structure can help identify key personnel and potential
points of entry for attacks.
What types of information can be gleaned from corporate websites during reconnaissance?
✔✔ Corporate websites often reveal information about products, services, employee details, and
contact information, useful for crafting targeted attacks.
What are the advantages of using automated tools for reconnaissance?
✔✔ Automated tools can speed up the information-gathering process, reduce human error, and
provide comprehensive data analysis.
What is the importance of securing information collected during reconnaissance?
✔✔ Securing collected information is vital to prevent it from being misused or falling into the
hands of malicious actors.
What can be inferred from a target’s public IP address?
✔✔ A public IP address can provide insight into the target's geographical location, internet
service provider, and network infrastructure.
2
, What is reconnaissance in the context of ethical hacking?
✔✔ Reconnaissance is the process of gathering information about a target to identify potential
vulnerabilities and attack vectors.
What are the two main types of reconnaissance?
✔✔ The two main types of reconnaissance are passive reconnaissance and active
reconnaissance.
What is passive reconnaissance?
✔✔ Passive reconnaissance involves collecting information without directly interacting with the
target, such as using public records and social media.
What is active reconnaissance?
✔✔ Active reconnaissance involves directly interacting with the target system to gather
information, such as pinging or scanning the network.
What tools can be used for passive reconnaissance?
✔✔ Tools like WHOIS, social media platforms, and search engines can be used for passive
reconnaissance.
3
Information Gathering Questions and
Answers | Latest Version | 2024/2025 |
Rated A+
What is the ethical consideration when conducting reconnaissance?
✔✔ Ethical hackers must ensure they have proper authorization and avoid illegal activities
during the reconnaissance phase.
What are some examples of publicly available data that can aid in reconnaissance?
✔✔ Publicly available data includes government databases, corporate filings, and news articles
related to the target.
What role does reconnaissance play in the overall penetration testing process?
✔✔ Reconnaissance is a critical first step in penetration testing, providing the foundational
information needed for effective exploitation.
What is the significance of understanding a target's organizational structure during
reconnaissance?
1
,✔✔ Understanding an organization's structure can help identify key personnel and potential
points of entry for attacks.
What types of information can be gleaned from corporate websites during reconnaissance?
✔✔ Corporate websites often reveal information about products, services, employee details, and
contact information, useful for crafting targeted attacks.
What are the advantages of using automated tools for reconnaissance?
✔✔ Automated tools can speed up the information-gathering process, reduce human error, and
provide comprehensive data analysis.
What is the importance of securing information collected during reconnaissance?
✔✔ Securing collected information is vital to prevent it from being misused or falling into the
hands of malicious actors.
What can be inferred from a target’s public IP address?
✔✔ A public IP address can provide insight into the target's geographical location, internet
service provider, and network infrastructure.
2
, What is reconnaissance in the context of ethical hacking?
✔✔ Reconnaissance is the process of gathering information about a target to identify potential
vulnerabilities and attack vectors.
What are the two main types of reconnaissance?
✔✔ The two main types of reconnaissance are passive reconnaissance and active
reconnaissance.
What is passive reconnaissance?
✔✔ Passive reconnaissance involves collecting information without directly interacting with the
target, such as using public records and social media.
What is active reconnaissance?
✔✔ Active reconnaissance involves directly interacting with the target system to gather
information, such as pinging or scanning the network.
What tools can be used for passive reconnaissance?
✔✔ Tools like WHOIS, social media platforms, and search engines can be used for passive
reconnaissance.
3
