CompTIA PenTest+ (PT0-003) — Question 209

A penetration tester needs to evaluate the security of example.com and gather stealthy information using DNS. Which of the following is the best tool for the tester to use?

Answer options

• A. Nikto
• B. InSSIDer
• C. masscan
• D. Recon-ng

Correct answer: D

Explanation

The correct answer is D, Recon-ng, because it is specifically designed for reconnaissance and gathering information, including DNS data, in a stealthy manner. The other options, such as Nikto, focus on web server vulnerabilities, InSSIDer is used for wireless network analysis, and masscan is primarily for port scanning, making them less suitable for DNS information gathering.