CompTIA PenTest+ (PT0-002) — Question 34

A penetration tester is reviewing the following DNS reconnaissance results for comptia.org from dig:
...
;; ANSWER SECTION
comptia.org. 3569 IN MX comptia.org-mail.protection.outlook.com. comptia.org. 3569 IN A 3.219.13.186. comptia.org. 3569 IN NS ns1.comptia.org. comptia.org. 3569 IN SOA haven. administrator.comptia.org. comptia.org. 3569 IN MX new.mx0.comptia.org. comptia.org. 3569 IN MX new.mx1.comptia.org.
Which of the following potential issues can the penetration tester identify based on this output?

Answer options

• A. At least one of the records is out of scope.
• B. There is a duplicate MX record.
• C. The NS record is not within the appropriate domain.
• D. The SOA records outside the comptia.org domain.

Correct answer: A

Explanation

The correct answer is A because at least one of the records indicates an issue with its applicability to the domain in question. The other options are incorrect as there are no duplicate MX records, the NS record is valid within the domain, and the SOA record is correctly associated with comptia.org.