Company.org has requested a black-box security assessment be performed on key cyber terrain.
One area of concern is the company's SMTP services.
The security assessor wants to run reconnaissance before taking any additional action and wishes to determine which SMTP server is Internet-facing.
Which of the following commands should the assessor use to determine this information?
Click on the arrows to vote for the correct answer
A. B. C. D.A.
The correct answer to determine which SMTP server is Internet-facing is (B) dig company.org mx.
Explanation:
SMTP (Simple Mail Transfer Protocol) is a standard protocol used for email transmission. It is important to know which SMTP server is Internet-facing as it could be targeted by an attacker for malicious purposes. In order to determine which SMTP server is Internet-facing, the security assessor should use the following command:
(B) dig company.org mx
This command will perform a DNS (Domain Name System) lookup for the domain "company.org" and retrieve the MX (Mail Exchange) record. The MX record specifies the domain name of the SMTP server responsible for accepting email messages for the domain. By retrieving the MX record, the security assessor can determine which SMTP server is Internet-facing and therefore, potentially vulnerable to attacks.
Option (A) dnsrecon "d company.org "t SOA is not the correct command as it retrieves the Start of Authority (SOA) record, which contains administrative information about the domain and not SMTP server information.
Option (C) nc "v company.org is not the correct command as it is used to establish a network connection to a remote server, but it does not provide information about the SMTP server.
Option (D) whois company.org is not the correct command as it retrieves information about the domain registrar and not the SMTP server.