Certiport CyberSecurity Certification Practice Exam

Active reconnaissance is a technique used in cybersecurity where an attacker actively probes a network or system to gather information. This method often includes tactics like port scanning, ping sweeps, and other direct interactions with target systems. By sending requests and analyzing the responses, attackers can gain critical insights into the network's structure, the services running on different ports, and potential vulnerabilities that can be exploited.

This differs significantly from passive reconnaissance, where the attacker gathers information without direct interaction, such as monitoring network traffic, examining publicly available information, or using tools that do not alert the target system. Social engineering reconnaissance also differs as it relies on manipulating individuals to disclose sensitive information rather than probing systems. Technical reconnaissance may refer broadly to the techniques used in gathering detailed technical information about a system but does not specifically imply the level of interaction seen in active reconnaissance.