nerdexam
EC-Council

312-50V9 · Question #363

What tool should you use when you need to analyze extracted metadata from files you collected when you were in the initial stage of penetration test (information gathering)?

The correct answer is C. Metagoofil. Metagoofil is a metadata extraction and analysis tool specifically designed for the information gathering phase of penetration testing. It extracts metadata from publicly available documents (PDF, DOC, XLS, PPT, etc.) and can analyze already-collected files to reveal sensitive in

Footprinting and Reconnaissance

Question

What tool should you use when you need to analyze extracted metadata from files you collected when you were in the initial stage of penetration test (information gathering)?

Options

  • AArmitage
  • BDimitry
  • CMetagoofil
  • Dcdpsnarf

How the community answered

(39 responses)
  • A
    3% (1)
  • B
    5% (2)
  • C
    92% (36)

Explanation

Metagoofil is a metadata extraction and analysis tool specifically designed for the information gathering phase of penetration testing. It extracts metadata from publicly available documents (PDF, DOC, XLS, PPT, etc.) and can analyze already-collected files to reveal sensitive information such as usernames, software versions, server paths, and email addresses - all valuable intelligence for a pentest. The other options serve different purposes: Armitage is a GUI-based attack management interface for Metasploit; DMitry (not 'Dimitry') is a host information gathering tool focused on whois, DNS, and port data; and cdpsnarf is a network packet sniffer for capturing Cisco Discovery Protocol (CDP) frames.

Topics

#Metagoofil#metadata extraction#OSINT tools#information gathering

Community Discussion

No community discussion yet for this question.

Full 312-50V9 Practice