CompTIA PenTest+ (PT0-002) — Question 305

A penetration tester is conducting a physical test against an organization. During the first day of the assessment, the tester follows an employee to the coffee shop next door. While the employee is ordering, the tester stands near the employee and captures the employee's badge electronically. Which of the following exploits is the penetration tester most likely conducting?

Answer options

• A. Tailgating
• B. Bluesnarfing
• C. RFID cloning
• D. Session hijacking

Correct answer: C

Explanation

The correct answer is C, RFID cloning, because the tester is capturing the employee's badge information electronically, which involves replicating RFID data. Tailgating involves unauthorized physical access following an authorized person, which is not the case here. Bluesnarfing refers to accessing data from a Bluetooth device without permission, and session hijacking involves taking over a user session, neither of which applies to this scenario.