CompTIA PenTest+ (PT0-003) — Question 90

A penetration tester is testing a power plant's network and needs to avoid disruption to the grid. Which of the following methods is most appropriate to identify vulnerabilities in the network?

Answer options

• A. Configure a network scanner engine and execute the scan.
• B. Execute a testing framework to validate vulnerabilities on the devices.
• C. Configure a port mirror and review the network traffic.
• D. Run a network mapper tool to get an understanding of the devices.

Correct answer: C

Explanation

The correct answer is C because configuring a port mirror allows the penetration tester to observe network traffic without interfering with the actual operations of the grid. Options A and B involve active scanning techniques that could disrupt services, while option D, although passive, does not directly identify vulnerabilities.