At the information gathering stage, a penetration tester is trying to passively identify the technology running on a client's website. Which of the following approached should the penetration tester take?
A.
Run a spider scan in Burp Suite.
B.
Use web aggregators such as BuiltWith and Netcraft
C.
Run a web scraper and pull the website's content.
D.
Use Nmap to fingerprint the website's technology.
I agree the answer to this question would be B, but BuiltWith and Netcraft are not on the list of tools in the rubric for PT0-001. I would hope CompTIA wouldn't throw random tools not mentioned in the actual test.
B: BuiltWith shows which technology is used by the site.
upvoted 4 times
...
This section is not available anymore. Please use the main Exam Page.PT0-001 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
kloug
2 years, 2 months agomiabe
2 years, 9 months agorose_y
3 years, 6 months agocarletten
3 years, 8 months agoCapCrunch
3 years, 9 months agoskipcrab
3 years, 10 months agoboooliyooo
3 years, 10 months agor0bin_h00d
3 years, 11 months ago