Free CompTIA PenTest+ PT0-002 Practice Question

A penetration tester is looking to identify if advanced security measures are in place to protect a web application. What method should they employ to best determine the presence of specialized filtering and blocking systems?

  • Search through online documentation and forums where the web security measures of the organization might have been discussed.

  • Automatically map out the structure of the application to search for error codes or security-related messages.

  • Capture and investigate HTTP headers and metadata for evidence of security solutions in transit.

  • Obtain contact details from the website and inquire about their deployed security technologies.

  • Send tailored inputs to the application, observing the responses for indications of systematic content examination.

  • Analyze the site's disallowed entries in the robots.txt file for potential security measures.

This question's topic:
CompTIA PenTest+ PT0-002 / 
Information Gathering and Vulnerability Scanning
Your Score:

Check or uncheck an objective to set which questions you will receive.