Question
a.
They provide information about the organization's security posture.
b.
They contain recent job postings for the organization.
c.
They offer insights into the organization's reputation, employee satisfaction, and internal issues.
d.
They reveal details about the organization's applications.
Posted under CompTIA PenTest+ Certification Exam PT0 002
Engage with the Community - Add Your Comment
Confused About the Answer? Ask for Details Here.
Know the Explanation? Add it Here.
Q. How can Glassdoor and similar websites be useful for penetration testers?
Similar Questions
Discover Related MCQs
Q. What information can be obtained through application fingerprinting in penetration testing?
View solution
Q. How does banner grabbing contribute to application fingerprinting?
View solution
Q. What role does Netcat play in banner grabbing for application fingerprinting?
View solution
Q. How can vulnerability scanners and web application security tools complement application fingerprinting?
View solution
Q. Why are exposed APIs considered valuable in penetration testing?
View solution
Q. How can Nmap be used for certificate enumeration?
View solution
Q. What information can be obtained through certificate enumeration in penetration testing?
View solution
Q. What are JSON Web Tokens (JWTs) commonly used for in web applications?
View solution
Q. Why are tokens a target for penetration testers?
View solution
Q. What is the scoping of tokens in penetration testing?
View solution
Q. Why is acquiring a token without scoping limitations a likely goal for penetration testers?
View solution
Q. What is the significance of issuing a token in the token life cycle for penetration testers?
View solution
Q. Why does token revocation create challenges for penetration testers?
View solution
Q. How do penetration testers often conduct token-based attacks?
View solution
Q. What is the challenge in discovering third-party–hosted assets in penetration testing?
View solution
Q. Which tool can assist penetration testers in discovering a target's cloud infrastructure for infrastructure-as-a-service (IaaS) providers like Amazon, Google, and Microsoft?
View solution
Q. What information can penetration testers gain by discovering storage buckets and applications in cloud environments?
View solution
Q. What is a common challenge faced by penetration testers when performing discovery in environments hosted by third parties or cloud service providers?
View solution
Q. Why is scoping more complex for modern penetration testers when compared to pentesters in the past?
View solution
Q. Why is analyzing code as part of an enumeration and information-gathering exercise important for penetration testers?
View solution
Suggested Topics
Are you eager to expand your knowledge beyond CompTIA PenTest+ Certification Exam PT0 002? We've curated a selection of related categories that you might find intriguing.
Click on the categories below to discover a wealth of MCQs and enrich your understanding of Computer Science. Happy exploring!
