CompTIACompTIA
PT0-002 · Question #489
PT0-002 Question #489: Real Exam Question with Answer & Explanation
Sign in or unlock PT0-002 to reveal the answer and full explanation for question #489. The question stem and answer options stay visible for context.
Attacks and Exploits
Question
A penetration tester is testing a company's public APIs. In researching the API URLs, the penetration tester discovers that the URLs resolve to a cloud-hosted WAF service that is blocking the penetration tester's attack attempts. Which of the following should the tester do to best ensure the attacks will be more successful?
Options
- AIncrease the volume of attacks to enable more to possibly slip through.
- BVary the use of upper and lower case characters in payloads to fool the WAF.
- CUse multiple source IP addresses for the attack traffic to prevent being blocked.
- DLocate the company's servers that are hosting the API and send the traffic there.
Unlock PT0-002 to see the answer
You've previewed enough free PT0-002 questions. Unlock PT0-002 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#WAF bypass#Evasion techniques#API security#Cloud security