PT0-002 · Question #235
PT0-002 Question #235: Real Exam Question with Answer & Explanation
The correct answer is A: Scraping social media for personal details. Scraping social media for personal details can help a penetration tester craft personalized and convincing social engineering attacks against top-level executives, who may share sensitive or confidential information on their profiles. Registering domain names that are similar to
Question
Which of the following would assist a penetration tester the MOST when evaluating the susceptibility of top-level executives to social engineering attacks?
Options
- AScraping social media for personal details
- BRegistering domain names that are similar to the target company's
- CIdentifying technical contacts at the company
- DCrawling the company's website for company information
Explanation
Scraping social media for personal details can help a penetration tester craft personalized and convincing social engineering attacks against top-level executives, who may share sensitive or confidential information on their profiles. Registering domain names that are similar to the target company's can be used for phishing or typosquatting attacks, but not specifically against executives. Identifying technical contacts at the company can help with reconnaissance, but not with social engineering. Crawling the company's website for company information can provide general background knowledge, but not specific details about executives.
Topics
Community Discussion
No community discussion yet for this question.