CompTIA PenTest+ (PT0-003) — Question 192

A penetration tester discovers a deprecated directory in which files are accessible to anyone.

Which of the following would most likely assist the penetration tester in finding sensitive information without raising suspicion?

Answer options

• A. Enumerating cached pages available on web pages
• B. Looking for externally available services
• C. Scanning for exposed ports associated with the domain
• D. Searching for vulnerabilities and potential exploits

Correct answer: A

Explanation

The correct answer is A because enumerating cached pages can reveal sensitive information without alerting the target. The other options involve more overt actions, such as scanning for services or vulnerabilities, which could draw attention and potentially raise suspicion.