CompTIA PenTest+ (PT0-001) — Question 181

A penetration tester is connected to a client's local network and wants to passively identify cleartext protocols and potentially sensitive data being communicated across the network. Which of the following is the BEST approach to take?

Answer options

• A. Run a network vulnerability scan.
• B. Run a stress test.
• C. Run an MITM attack.
• D. Run a port scan.

Correct answer: C

Explanation

The correct answer is C, as a MITM (Man-in-the-Middle) attack allows the tester to intercept and analyze the data being transmitted across the network, revealing cleartext protocols and sensitive information. Options A and D focus on identifying vulnerabilities or open ports, which do not directly reveal the contents of communications. Option B, a stress test, is unrelated to the objective of identifying protocols or sensitive data.