CompTIA Exam PT0-002 Topic 4 Question 74 Discussion

Actual exam question for CompTIA's PT0-002 exam

Question #: 74
Topic #: 4

As part of an active reconnaissance, a penetration tester intercepts and analyzes network traffic, including API requests and responses. Which of the following can be gained by capturing and examining the API traffic?

AAssessing the performance of the network's API communication

BIdentifying the token/authentication detail

CEnumerating all users of the application

DExtracting confidential user data from the intercepted API responses

Show Suggested Answer

Suggested Answer: B

Scoping defines the penetration test's boundaries and objectives, ensuring alignment with the client's needs and expectations. This is a key step in pre-engagement activities, as outlined in the CompTIA Pentest+ objectives.

by Rainer at Dec 03, 2024, 12:09 PM

Limited Time Offer

25%

Off

Get Premium PT0-002 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Venita

23 hours ago

B) Identifying the token/authentication detail is definitely the correct answer. Capturing API traffic is a great way to analyze the authentication mechanisms in use.

upvoted 0 times

...