CompTIA PenTest+ (PT1-002) — Question 15
A penetration tester is preparing to perform activities for a client that requires minimal disruption to company operations. Which of the following are considered passive reconnaissance tools? (Choose two.)
Answer options
- A. Wireshark
- B. Nessus
- C. Retina
- D. Burp Suite
- E. Shodan
- F. Nikto
Correct answer: A, E
Explanation
Wireshark and Shodan are both considered passive reconnaissance tools because they gather information without actively engaging with the target systems. In contrast, Nessus, Retina, Burp Suite, and Nikto are primarily active scanning tools that can disrupt normal operations.