CompTIA
CAS-003 · Question #396
CAS-003 Question #396: Real Exam Question with Answer & Explanation
The correct answer is B: Port scanner. At first, the pentester used a port scanner (B) – something like a nmap. Then, the 2nd tool was a HTTP interceptor (F) – something like Burp Suite/ZAP.
Question
A consulting firm was hired to conduct assessment for a company. During the first stage, a penetration tester used a tool that provided the following output: TCP 80 open TCP 443 open TCP 1434 filtered The penetration tester then used a different tool to make the following requests: GET / script/login.php?token=45$MHT000MND876 GET / script/login.php?token=@#984DCSPQ%091DF Which of the following tools did the penetration tester use? (Choose two)
Options
- AProtocol analyzer
- BPort scanner
- CFuzzer
- DBrute forcer
- ELog analyzer
- FHTTP interceptor
Explanation
At first, the pentester used a port scanner (B) – something like a nmap. Then, the 2nd tool was a HTTP interceptor (F) – something like Burp Suite/ZAP.
Community Discussion
No community discussion yet for this question.