CompTIA PenTest+ (PT0-001) — Question 37

Joe, a penetration tester, is asked to assess a company's physical security by gaining access to its corporate office. Joe is looking for a method that will enable him to enter the building during business hours or when there are no employees on-site. Which of the following would be the MOST effective in accomplishing this?

Answer options

• A. Badge cloning
• B. Lock picking
• C. Tailgating
• D. Piggybacking

Correct answer: A

Explanation

Badge cloning is the most effective method because it allows Joe to create a duplicate access badge that can grant him entry without raising suspicion. Lock picking may be less effective during business hours due to the potential for detection, while tailgating and piggybacking rely on the presence of legitimate users, which may not always be feasible.