nerdexam
EC-Council

312-50V11 · Question #1030

Richard, an attacker, targets an MNC In this process, he uses a footprinting technique to gather as much information as possible. Using this technique, he gathers domain information such as the target

The correct answer is D. Whois footprinting. Whois footprinting queries public domain registration databases to retrieve owner contact details, creation date, expiry date, and registrar information for a target domain.

Footprinting and Reconnaissance

Question

Richard, an attacker, targets an MNC In this process, he uses a footprinting technique to gather as much information as possible. Using this technique, he gathers domain information such as the target domain name, contact details of its owner, expiry date, and creation date. With this information, he creates a map of the organization's network and misleads domain owners with social engineering to obtain internal details of its network. What type of footprinting technique is employed by Richard?

Options

  • AVPN footprinting
  • BEmail footprinting
  • CVoIP footprinting
  • DWhois footprinting

How the community answered

(15 responses)
  • B
    7% (1)
  • D
    93% (14)

Why each option

Whois footprinting queries public domain registration databases to retrieve owner contact details, creation date, expiry date, and registrar information for a target domain.

AVPN footprinting

VPN footprinting focuses on identifying VPN gateways, protocols, and endpoints used by an organization, not domain registration ownership data.

BEmail footprinting

Email footprinting involves tracking email headers and open-tracking pixels to gather sender IP addresses and mail server paths, not domain registration details.

CVoIP footprinting

VoIP footprinting targets Voice over IP infrastructure such as SIP servers and extensions, not domain name ownership and expiry information.

DWhois footprintingCorrect

Whois is a query protocol and public database that stores domain registration records including the registrant name, contact details, creation and expiration dates, and registrar information. Attackers use this data to map an organization's domain assets and craft targeted social engineering attacks against domain owners or administrators.

Concept tested: Whois domain registration footprinting technique

Source: https://learn.microsoft.com/en-us/azure/dns/dns-overview

Topics

#Whois lookup#domain footprinting#DNS reconnaissance#OSINT

Community Discussion

No community discussion yet for this question.

Full 312-50V11 Practice