SecPlusTrainer / Glossary / What is banner grabbing?
D9 · PenTest+

What is banner grabbing?

Banner grabbing reads service banners to identify software versions — helping attackers find vulnerable software. Tools: Nmap, Netcat, Telnet.
Banner grabbing is passive reconnaissance. Defense: suppress or falsify banners. Knowing a server runs Apache 2.2.3 lets an attacker target known CVEs for that exact version.

Related Terms

What is enumeration in cybersecurity? What is OSINT (Open Source Intelligence)? What is passive reconnaissance? What is pen test scoping?
← Back to Glossary Practice Questions →