CompTIA PenTest+ (PT0-001) — Question 83
A penetration tester is preparing to conduct API testing. Which of the following would be MOST helpful in preparing for this engagement?
Answer options
- A. Nikto
- B. WAR
- C. W3AF
- D. Swagger
Correct answer: D
Explanation
Swagger is a powerful tool that provides an interface for describing and documenting APIs, which is essential for understanding how to test them effectively. Nikto and W3AF are useful for web application testing but are not specifically tailored for APIs. WAR is a file format and does not serve as a tool for preparing API testing.