CompTIA PenTest+ (PT0-002) — Question 233

After compromising a system, a penetration tester wants more information in order to decide what actions to take next. The tester runs the following commands:

curl http://169.254.169.254/latest

Which of the following attacks is the penetration tester more likely trying to perform?

Answer options

• A. Metadata service attack
• B. Container escape techniques
• C. Credential harvesting
• D. Resource exhaustion

Correct answer: A

Explanation

The correct answer is A because the command targets the metadata service typically found in cloud environments, which provides sensitive information about the instance. Options B, C, and D do not relate directly to querying the metadata service and are therefore not applicable in this context.