Question

An IT security manager requests a report on company information that is publicly available. The manager's concern is that malicious actors will be able to access the data without engaging in active reconnaissance. Which of the following is the MOST efficient approach to perform the analysis?

a. Provide a domain parameter to the Harvester tool
b. Check public DNS entries using dnsenum
c. Perform a Nessus vulnerability scan targeting a public company's IP
d. Execute nmap using the options, scan all ports and sneaky mode.

Answer 1

The most efficient approach is to use the Harvester tool to collect publicly available information about the company, which avoids active scanning.

Step-by-step explanation:

The most efficient approach to perform an analysis of company information that is publicly available would be to provide a domain parameter to the Harvester tool. The Harvester is specifically designed for gathering publicly available information and is capable of collecting emails, subdomains, hosts, employee names, open ports, and banners from different public sources without engaging in active scanning or directly interacting with the target's infrastructure. Using the Harvester, IT security managers can quickly identify what information is available to potential malicious actors.