What distinguishes passive information gathering from active information gathering?

Passive information gathering is characterized by the collection of data without directly interacting with the target system or network. This method relies on publicly available information and does not involve any probing or querying that could alert the target to the information gathering process. Sources for passive information gathering can include social media, domain registration details, public records, and online databases.

In contrast, active information gathering involves directly querying the target system, which may include techniques like port scanning or network mapping. This interaction can raise alarms with the target and is generally more intrusive.

The other options do not accurately differentiate between the two processes. Probing is inherently part of active gathering, and not requiring interaction contradicts the nature of active techniques. Additionally, stating that active gathering uses only public databases oversimplifies the complexity and varied techniques utilized in active reconnaissance, making it an incomplete characterization.