Exam PT0-002 topic 1 question 16 discussion

This is incorrect It should be D mainly because if the firewall was blocking the port than none of the web directories would have successful(200 codes) the 500 code is a server side error code meaning the correct answer is D.

The most likely reason for the lack of output is D. This UR(L) returned a server error. This is because the output of the dirb command shows that the profile URL responded with an HTTP Status Code 500, which indicates that the web server experienced an internal server error when the request was received. This could be caused by a number of things, such as a misconfigured server or a syntax error in the code. A is incorrect because the output of the dirb command indicates that the HTTP port is open. B is incorrect because the output indicates that the command was run without sudo and still produced a response. C is incorrect because the output of the dirb command indicates that the web server is using HTTP, not HTTPS.

Based on the provided output, the penetration tester performed a directory brute force using the Dirb tool on the target web server at http://172.16.100.10:3000. The output shows several URLs that were scanned, including http://172.16.100.10:3000/profile, which returned a server error (CODE: 500). A server error (HTTP status code 500) typically indicates an issue on the server side, such as a misconfiguration or an internal error that prevented the proper handling of the request. This can result in a blank page or an error message being displayed.

Gots to be D my boy. 500 Internal Server Error as compared to 200 OK status for get/post requests

As you can see in the generated result, the ...profile generated an HTTP STATUS 500 (internal server error), others have HTTP STATUS 200 ("OK")

I googled the 500 error, for my own piece of mind. Shows as a generic, server-side error.

The answer is A. this is because of the characteristics of port 3000. This port functions as a local host web dev port and it would seem not to respond to remote requests like port 80, 443 etc. A bit like ip 127.0.0.1

I think it is D.

The answer is D. This is a classic error a web admin or end user reports: https://support.cpanel.net/hc/en-us/articles/360051006293--HTTP-ERROR-500-PHP-website-blank-showing-a-white-page-or-Internal-Server-Error

D is correct

The client would have received a 500 error code in the browser, Not a blank page. Firewall I'm thinking....

Answer is D. Know your ouptut, and know your HTTP. Keep an eye on those response codes. 500 is a server error.

The answer is D, based on the error code. https://developer.mozilla.org/en-US/docs/Web/HTTP/Status

The correct answer is D and I second sidonpc

Agree with answer D.