A penetration tester discovers that an organization's infrastructure is hosted in the cloud. Which of the following technologies should the penetration tester explore for vulnerabilities? (Choose two.)
Think I will have to go with B and C on this one. While, virtualization does encompass Kubernetes and Docker as a whole I feel like this question is referencing containerization attacks.
Per the Comptia Pentest Study Guide Book pg 377
"Attacks against OS level virtualization tools like Docker and Kubernetes often start by compromising the application that is running in the container. Once you have compromised a container you can then attempt to access the containers host"
Virtualization is the very technology that allows cloud hosted infrastructure, platforms, and software so identifying weaknesses in that would be crucial. While Docker also seems like a good choice and is relevant, Kubernetes is an overall container management and orchestration platform, often managing Docker containers and clusters themselves. Better to go for the head of the snake rather than the body
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.PT0-002 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
4real870
4 weeks, 1 day agoBlackSkullz
4 months, 2 weeks ago