CompTIA PenTest+ (PT0-002) — Question 328

A penetration tester is performing an assessment for an organization and must gather valid user credentials. Which of the following attacks would be best for the tester to use to achieve this objective?

Answer options

• A. Wardriving
• B. Captive portal
• C. Deauthentication
• D. Impersonation

Correct answer: B

Explanation

The correct answer is B, as a captive portal can be used to redirect users to a login page where they can enter their credentials. The other options are less effective for this purpose: Wardriving involves scanning for networks, deauthentication attacks disrupt connections without collecting credentials, and impersonation requires prior access to gain trust, which does not directly gather user credentials.