Attack Lifecycle
/topic/reconnaissance
Reconnaissance
Reconnaissance is the first stage of any structured attack.
Passive recon
- OSINT — public records, social media
- DNS records — Shodan, Censys, certificate transparency
Active recon
Direct interaction. Port scans, service fingerprinting, web crawling.