Crucial Exams

CompTIA PenTest+ PT0-002 Practice Question

During a passive reconnaissance phase, you are tasked with identifying subdomains related to the target company's main domain to map out its external attack surface. Which method would most effectively yield a comprehensive list of subdomains without actively interacting with the target's systems?

  • Perform a whois lookup to directly reveal all associated subdomains

  • Scan the target's IP address range for DNS services using a network scanner

  • Initiate a DNS zone transfer to get a list of all DNS records

  • Use advanced search operators on search engines to find indexed subdomains

CompTIA PenTest+ PT0-002
Information Gathering and Vulnerability Scanning
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
SAVE $49
CompTIA PenTest+ Voucher (PT0-002)
$404.00 $355.00
Bash, the Crucial Exams Chat Bot
AI Bot