CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free CompTIA PenTest+ PT0-002 Practice Question

During a passive reconnaissance mission, you discover that the secure communication certificate used by the target organization's web server has been invalidated. Which option should you choose to most authoritatively confirm the current status of this certificate?

  • Inspect the browser's security panel while accessing the website for any security warnings.

  • Employ an automated scanning tool to analyze the server's encryption protocols and identify any invalidations.

  • Conduct a WHOIS domain lookup to see if there is any mention of certificate invalidation.

  • Use the Online Certificate Status Protocol (OCSP) to verify the current status directly from the issuing authority.

This question is for objective:
Information Gathering and Vulnerability Scanning
Your Score:
Information Gathering and Vulnerability Scanning
Attacks and Exploits
Reporting and Communication
Tools and Code Analysis
Planning and Scoping