Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us [email protected]
Menu

Unlimited Access

Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
Comptia Discussions

Exam CAS-004 topic 1 question 266 discussion

Actual exam question from CompTIA's CAS-004
Question #: 266
Topic #: 1
[All CAS-004 Questions]

A penetration tester is testing a company’s login form for a web application using a list of known usernames and a common password list. According to a brute-force utility, the penetration tester needs to provide the tool with the proper headers, POST URL with variable names, and the error string returned with an improper login. Which of the following would BEST help the tester to gather this information? (Choose two.)

  • A. The new source feature of the web browser
  • B. The logs from the web server
  • C. The inspect feature from the web browser
  • D. A tcpdump from the web server
  • E. An HTTP interceptor
  • F. The website certificate viewed via the web browser
Show Suggested Answer Hide Answer
Suggested Answer: DE 🗳️
by Amin4799 at April 1, 2023, 4:05 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
[Removed]
Highly Voted 12 months ago
Selected Answer: CE
C. The inspect feature from the web browser and E. An HTTP interceptor would be the best options to gather this information. The inspect feature of the web browser can be used to view the source code of the login form and identify the POST URL and variable names. An HTTP interceptor can be used to capture the headers and error string returned with an improper login. The logs from the web server may not provide the specific information needed for the brute-force attack, while tcpdump from the web server may capture too much information and require additional processing. The website certificate viewed via the web browser and the new source feature of the web browser are unlikely to provide the needed information for this specific task.
upvoted 5 times
...
darkdumper
Most Recent 1 year ago
Selected Answer: CE
Correct CE.
upvoted 3 times
...
Amin4799
1 year ago
Selected Answer: CE
CE look good
upvoted 3 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel