From the course: CompTIA PenTest (PT0-002) Cert Prep

Unlock this course with a free trial

Join today to access over 23,200 courses taught by industry experts.

Analyzing scan output

Analyzing scan output

From the course: CompTIA PenTest (PT0-002) Cert Prep

Start my 1-month free trial Buy for my team

Analyzing scan output

- Remember that the purpose of collecting all this reconnaissance information is not to simply have a lot of information to slap onto the end of a report. The idea is to analyze the output that you receive from these tools, determine what they're telling you and pull out the most important pieces of information. So it's important that before you run a tool or when you run a tool, that you understand what the output's going to look like. DNS lookups are going to give you lots of information. You've already used Nslookup and Whois. Go look at the output that you received and ask yourself, what is this telling me? What information am I looking for? And what information is this filling in? You could also crawl websites to get lots of information, but understand what you get back. You can find tons and tons of pages and pages of information, but if you don't understand how to analyze it, you're not going to be getting much information and you're going to be wasting your time. Netcat can…

Contents