ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam
Go to Exam

Exam PT0-002 topic 1 question 300 discussion

Actual exam question from CompTIA's PT0-002
Question #: 300
Topic #: 1
[All PT0-002 Questions]

A penetration tester is performing an assessment against a customer’s web application that is hosted in a major cloud provider’s environment. The penetration tester observes that the majority of the attacks attempted are being blocked by the organization’s WAF. Which of the following attacks would be most likely to succeed?

  • A. Reflected XSS
  • B. Brute-force
  • C. DDoS
  • D. Direct-to-origin
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by 041ba31 at March 13, 2024, 5 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
041ba31
Highly Voted 1 year, 1 month ago
Selected Answer: D
A direct-to-origin attack bypasses the web application firewall (WAF) by targeting the server hosting the application directly, rather than going through the cloud provider's protections or the WAF itself. This can be achieved if the attacker discovers the original IP address of the server behind the WAF, allowing them to send malicious requests directly to the server, circumventing the WAF's filtering mechanisms.
upvoted 5 times
...
Nikamy
Most Recent 5 months, 3 weeks ago
Selected Answer: A
A or D? For D you need the domain? There is no domain specified
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago