ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam
Go to Exam

Exam PT0-002 topic 1 question 368 discussion

Actual exam question from CompTIA's PT0-002
Question #: 368
Topic #: 1
[All PT0-002 Questions]

A security analyst is conducting a penetration test for an online store with a database server. Which of the following tools would best assist the tester in detecting vulnerabilities on that server?

  • A. Burp Suite
  • B. Nessus
  • C. Nikto
  • D. SQLmap
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by 6f49db7 at Sept. 2, 2024, 5:02 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Willz01
2 weeks, 4 days ago
Selected Answer: B
At first I thought it was D.SQLmap but now im going with B.Nessus. Seems like they are trying to throw you off by saying database server. It asks what would be used to detect vulnerabilities on the server not just SQL injections.
upvoted 1 times
...
BlackSkullz
1 month ago
Selected Answer: D
This was a tough one for me On one hand, Nessus would be performed by an analyst which means that it most likely would be a credentialed scan being conducted, which could reveal very comprehensive vulnerability information. However, the way the question is worded, it seems like it's asking specifically about the database server rather than the online store application. SQLmap specializes in SQL injection vulnerabilities and provides very in-depth information on what it finds. For this, I would have to give the edge to D. SQLmap
upvoted 1 times
...
IamBlackFire
2 months, 1 week ago
Selected Answer: D
Guys the answer is in the question. We are not referring to online store server (nikto should be the best, burpsuite as well .. and SQLmap) but CompTIA is asking for "that" server: the database server.
upvoted 1 times
...
sparseyyy
2 months, 4 weeks ago
Selected Answer: B
Nessus is a comprehensive vulnerability scanner that can assess a wide range of systems, including database servers, for vulnerabilities. It provides detailed reports on discovered vulnerabilities, their severity, and recommended remediation steps
upvoted 4 times
...
6f49db7
3 months, 3 weeks ago
B. Nessus
upvoted 3 times
wdmssk
3 months, 2 weeks ago
Agree. The question is asking "vulnerabilities on that server". SQLmap is focused specifically on SQL injection vulnerabilities.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago