CompTIA PenTest+ (PT0-002) — Question 334

A penetration tester wants to perform a SQL injection test. Which of the following characters should the tester use to start the SQL injection attempt?

Answer options

• A. Colon
• B. Double quote mark
• C. Single quote mark
• D. Semicolon

Correct answer: C

Explanation

The correct answer is C, the single quote mark, as it is commonly used to manipulate SQL queries and can lead to unauthorized access or data retrieval. The other options, such as the colon, double quote mark, and semicolon, do not serve the same purpose in initiating SQL injection techniques.