Pre-Attack Reconnaissance and Exploitation Planning Introduction

Question 1

What do attackers do before launching an attack?

Answer 1

They invest time in reconnaissance and exploitation planning.

Question 2

Why is pre-attack reconnaissance important to attackers?

Answer 2

It helps them choose effective attack vectors and plan how exploitation will be carried out.

Question 3

Why should defenders understand pre-attack preparation?

Answer 3

It helps them recognise early warning signs and reduce the chance of successful exploitation.

Question 4

What is reconnaissance in cybersecurity?

Answer 4

The process of gathering information about a target before launching an attack.

Question 5

What is OSINT in the context of attacker reconnaissance?

Answer 5

Open Source Intelligence gathered from publicly available sources.

Question 6

What sources do attackers use for OSINT?

Answer 6

Public websites, social media, job postings, and code repositories.

Question 7

Why do attackers use social media during reconnaissance?

Answer 7

To gather information about employees, roles, and organisational behaviour.

Question 8

Why are job postings useful to attackers?

Answer 8

They can reveal technologies, tools, and security platforms used by an organisation.

Question 9

Why are code repositories useful to attackers?

Answer 9

They may expose development details, technologies, or accidental leaks.

Question 10

What is technology fingerprinting?

Answer 10

Identifying the operating systems, applications, frameworks, and platforms used by a target.

Question 11

Why do attackers perform technology fingerprinting?

Answer 11

To find suitable weaknesses and tailor attack methods to the environment.

Question 12

What kinds of technologies do attackers try to identify?

Answer 12

Operating systems, applications, frameworks, and email platforms.

Question 13

What is organisational mapping?

Answer 13

Learning reporting structures, employee roles, and communication patterns within an organisation.

Question 14

Why do attackers perform organisational mapping?

Answer 14

To identify valuable targets and craft more convincing attacks.

Question 15

What can attackers learn from employee roles and reporting structures?

Answer 15

Who has access, influence, or privileged permissions.

Question 16

What is external exposure review?

Answer 16

Enumerating public-facing services, domains, and authentication portals.

Question 17

Why do attackers review external exposure?

Answer 17

To identify reachable systems and possible entry points.

Question 18

What does enumerating public-facing services mean?

Answer 18

Discovering internet-accessible systems, services, and portals.

Question 19

Why are authentication portals valuable to attackers?

Answer 19

Because they may be targeted for credential theft or brute-force attempts.

Question 20

What is credential intelligence?

Answer 20

Searching for leaked usernames, passwords, or reused credentials from previous breaches.

Question 21

Why is credential intelligence useful to attackers?

Answer 21

It may give them valid access without needing to exploit software.

Question 22

What kinds of credentials do attackers look for?

Answer 22

Leaked usernames, passwords, and reused login details.

Question 23

What is vector selection in exploitation planning?

Answer 23

Choosing the method of attack, such as phishing, credential abuse, vulnerability exploitation, or social engineering.

Question 24

What are common attack vectors chosen during planning?

Answer 24

Phishing, credential abuse, vulnerability exploitation, and social engineering.

Question 25

Why do attackers choose one vector over another?

Answer 25

They select the method most likely to succeed against the target.

Question 26

What is target prioritisation?

Answer 26

Focusing on users or systems with higher privileges or weaker security controls.

Question 27

Why do attackers prioritise certain targets?

Answer 27

Because they offer greater access or are easier to compromise.

Question 28

What kinds of users are often prioritised by attackers?

Answer 28

Users with high privileges or weak security protections.

Question 29

What is payload customisation?

Answer 29

Tailoring malicious links, attachments, or scripts to fit the target environment.

Question 30

Why do attackers customise payloads?

Answer 30

To increase the chance that the target will trust, open, or execute them.

Question 31

What kinds of payloads might attackers customise?

Answer 31

Malicious links, attachments, and scripts.

Question 32

What is timing strategy in attack planning?

Answer 32

Choosing when to launch an attack to reduce detection or increase success.

Question 33

Why do attackers launch attacks during busy periods or off-hours?

Answer 33

Because defenders may be distracted or monitoring may be weaker.

Question 34

What is fallback planning?

Answer 34

Preparing alternate attack methods if the initial attempt fails.

Question 35

Why is fallback planning important to attackers?

Answer 35

It allows them to continue the attack even if the first vector is blocked.

Question 36

Why are attack vectors rarely chosen at random?

Answer 36

Because attackers usually base them on gathered intelligence and planning.

Question 37

How does understanding reconnaissance help defenders?

Answer 37

It supports earlier detection and stronger preventive controls.

Question 38

How can defenders benefit from spotting reconnaissance activity?

Answer 38

They can disrupt attacks before exploitation begins.

Question 39

What suspicious behaviour may indicate reconnaissance?

Answer 39

Scanning, information harvesting, and unusual probing of public-facing assets.

Question 40

How does understanding reconnaissance strengthen security awareness training?

Answer 40

It makes training more realistic and aligned with real attacker behaviour.

Question 41

Why should organisations reduce exposed information?

Answer 41

Because public information can help attackers plan more effective attacks.

Question 42

How does understanding reconnaissance support attack surface management?

Answer 42

It helps organisations identify and reduce exposed systems and information.

Question 43

What is attack surface management?

Answer 43

The process of identifying, monitoring, and reducing exposed assets and weaknesses.

Question 44

How does understanding attacker planning support proactive risk reduction?

Answer 44

It helps organisations act before exploitation happens.

Question 45

What is the main defensive value of understanding pre-attack planning?

Answer 45

It helps reduce exposure, improve detection, and strengthen prevention.

Question 46

What is exploitation planning?

Answer 46

The process attackers use to decide how they will gain access and execute an attack.

Question 47

What is the relationship between reconnaissance and exploitation?

Answer 47

Reconnaissance gathers the information needed to choose and plan exploitation pathways.

Question 48

How can organisations disrupt attacks earlier?

Answer 48

By detecting reconnaissance, reducing exposed information, and strengthening preventive controls.