CompTIA PenTest+ (PT0-003) — Question 197

A penetration tester is attempting to exfiltrate sensitive data from a client environment without alerting the client’s blue team.

Which of the following exfiltration methods most likely remain undetected?

Answer options

Correct answer: C

Explanation

The Domain Name System (DNS) is often used for covert exfiltration of data due to its ability to blend in with regular traffic and its widespread use. Other methods like Cloud storage or Email can easily trigger alerts due to their more obvious nature and monitoring by security teams. Test storage sites may also be monitored, making them less ideal for undetected data exfiltration.