CompTIA PenTest+ (PT0-002) — Question 6

A penetration tester wants to find hidden information in documents available on the web at a particular domain. Which of the following should the penetration tester use?

Answer options

• A. Netcraft
• B. CentralOps
• C. Responder
• D. FOCA

Correct answer: D

Explanation

FOCA is specifically designed for analyzing documents and extracting metadata, making it the most suitable option for finding hidden information. Netcraft and CentralOps are used for different types of reconnaissance and monitoring, while Responder is focused on network attacks and is not relevant for document analysis.