CompTIA PenTest+ (PT0-003) — Question 16

A penetration tester is working on an engagement in which a main objective is to collect confidential information that could be used to exfiltrate data and perform a ransomware attack. During the engagement, the tester is able to obtain an internal foothold on the target network. Which of the following is the next task the tester should complete to accomplish the objective?

Answer options

• A. Initiate a social engineering campaign.
• B. Perform credential dumping.
• C. Compromise an endpoint.
• D. Share enumeration.

Correct answer: B

Explanation

The correct answer is B, as credential dumping allows the tester to extract user credentials from the system, which is essential for accessing further sensitive data. Options A and C are not immediate next steps after gaining an internal foothold, as they do not directly facilitate data exfiltration. Option D, sharing enumeration, does not contribute to the objective of obtaining confidential information.