CompTIA PenTest+ (PT0-002) — Question 320

A penetration tester discovers that an organization's infrastructure is hosted in the cloud. Which of the following technologies should the penetration tester explore for vulnerabilities? (Choose two.)

Answer options

• A. Virtualization
• B. Kubernetes
• C. Docker
• D. BIOS
• E. UEFI
• F. DNS

Correct answer: B, C

Explanation

Kubernetes and Docker are both container orchestration and management technologies widely used in cloud environments, making them critical areas for vulnerability assessment. Virtualization, BIOS, UEFI, and DNS are less relevant in this specific context as they do not directly pertain to cloud-native applications and services.