Active Recon
Active reconnaissance is quick, but the activity may trace back to the attacker
Nmap is the most well-known active recon tools
Pro - send specifically crafted packets to target systems
Con - the packet may show the attacker
Other tools
Metasploit's scanning modules
OpenVAS for vulnerbilty scans
Sqlmaps for web apps
WPScan for WordPress-based sites
Last updated