During a penetration test, you need to gather information about a target's email addresses and employee names without directly interacting with the target's systems. Which tool is most appropriate for this passive reconnaissance task?
Trap 1: Shodan
Shodan searches for internet-connected devices and services, not email addresses.
Trap 2: Censys
Censys scans IP addresses and certificates, not for email harvesting.
Trap 3: Maltego
Maltego is used for link analysis and OSINT but is not specifically focused on email harvesting.
- A
Shodan
Why wrong: Shodan searches for internet-connected devices and services, not email addresses.
- B
Censys
Why wrong: Censys scans IP addresses and certificates, not for email harvesting.
- C
Maltego
Why wrong: Maltego is used for link analysis and OSINT but is not specifically focused on email harvesting.
- D
theHarvester
theHarvester is designed to gather emails, subdomains, and names from public sources.