CompTIA Study Materials
AWS Study Materials
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA PenTest+ PT0-002 Practice Question

A penetration tester is looking to identify if advanced security measures are in place to protect a web application. What method should they employ to best determine the presence of specialized filtering and blocking systems?

  • Obtain contact details from the website and inquire about their deployed security technologies.

  • Automatically map out the structure of the application to search for error codes or security-related messages.

  • Send tailored inputs to the application, observing the responses for indications of systematic content examination.

  • Capture and investigate HTTP headers and metadata for evidence of security solutions in transit.

  • Search through online documentation and forums where the web security measures of the organization might have been discussed.

  • Analyze the site's disallowed entries in the robots.txt file for potential security measures.

Subscribe to avoid duplicate questions and track your progress over time
This question is for objective:
Information Gathering and Vulnerability Scanning
Your Score:
Information Gathering and Vulnerability Scanning
Attacks and Exploits
Reporting and Communication
Tools and Code Analysis
Planning and Scoping