Reconnaissance ‘attacks’ aren’t actually attacks, strictly speaking, but they are used to gather information about a target which is then used for future attacks.

Often, the information gained is actually publicly available, hence it not actually being an ‘attack’.

For example, you can use nslookup or WHOIS queries to find information about websites, such as their public IP address(es) and who owns them.