CompTIA PenTest+ (PT0-002) — Question 262

A penetration tester wants to perform reconnaissance without being detected. Which of the following activities have a minimal chance of detection? (Choose two.)

Answer options

• A. Open-source research
• B. A ping sweep
• C. Traffic sniffing
• D. Port knocking
• E. A vulnerability scan
• F. An Nmap scan

Correct answer: A, C

Explanation

Open-source research (A) does not involve interacting directly with a target network, making it hard to detect. Traffic sniffing (C) can often be done passively and without alerting systems, unlike actions such as a ping sweep (B) or an Nmap scan (F), which actively probe devices and are more likely to be flagged.