Passive reconnaissance gathers information without directly interacting with the target — OSINT, WHOIS lookups, DNS enumeration, social media, job listings, Shodan.
Passive recon generates no logs on the target. Active recon (scanning) may be detected. OPSEC-conscious attackers start with extensive passive recon before any active interaction with targets.