CompTIA PenTest+ (PT1-002) — Question 80

A penetration tester logs in as a user in the cloud environment of a company. Which of the following Pacu modules will enable the tester to determine the level of access of the existing user?

Answer options

• A. iam_enum_permissions
• B. iam_privesc_scan
• C. iam_backdoor_assume_role
• D. iam_bruteforce_permissions

Correct answer: A

Explanation

The correct module, iam_enum_permissions, is specifically designed to enumerate the permissions associated with a user, allowing the tester to understand their access level. The other options either focus on privilege escalation or assuming roles, which do not directly assess the current user's permissions.