CompTIA PenTest+ (PT0-001) — Question 89

An assessor begins an internal security test of the Windows domain internal.comptia.net. The assessor is given network access via DHCP, but is not given any network maps or target IP addresses. Which of the following commands can the assessor use to find any likely Windows domain controllers?

Answer options

• A. dig -q any _kerberos._tcp.internal.comptia.net
• B. dig -q any _lanman._tcp.internal.comptia.net
• C. dig -q any _ntlm._tcp.internal.comptia.net
• D. dig -q any _smtp._tcp.internal.comptia.net

Correct answer: A

Explanation

The correct answer is A because the _kerberos service is associated with Windows domain controllers, allowing the assessor to discover them. Options B, C, and D refer to services not specifically used for identifying Windows domain controllers, making them ineffective for this purpose.