PT0-002 · Question #491
PT0-002 Question #491: Real Exam Question with Answer & Explanation
The correct answer is A: Web server denial of service. Without the actual Python snippet, inferring from the correct answer, the penetration tester is attempting to perform a Web server denial of service attack by overwhelming the server with a flood of requests.
Question
During a security assessment, a penetration tester decides to use the following Python snippet: Which of the following best describes what the penetration tester is trying to achieve?
Options
- AWeb server denial of service
- BWeb application firewall bypass
- CWeb server response time estimation
- DWeb server latency estimation
Explanation
Without the actual Python snippet, inferring from the correct answer, the penetration tester is attempting to perform a Web server denial of service attack by overwhelming the server with a flood of requests.
Common mistakes.
- B. Web application firewall bypasses typically involve crafting specific payloads to circumvent security rules, not simply overwhelming a server with generic requests.
- C. Web server response time estimation involves measuring the delay of specific requests and does not typically involve flooding the server with traffic designed to cause disruption.
- D. Web server latency estimation focuses on measuring network delays between client and server, a passive observation, rather than actively disrupting service with excessive requests.
Concept tested. Denial of Service (DoS) attack principles
Reference. https://www.cloudflare.com/learning/ddos/what-is-a-dos-attack/
Topics
Community Discussion
No community discussion yet for this question.