Exam PT0-002 topic 1 question 21 discussion

Only a manual test is the BEST way to confirm an automated/scripted test.

I vote option C. Checking the result can reveal software version conflict with the actual system which could clearly identify true or false positive. This also saves time trying to exploit the vulnerability manually just to prove a point.

A true positive in vulnerability scanning means that the vulnerability really exists, and it's not a mistake or false alarm by the scanning tool. The best way to confirm a true positive is to manually test the vulnerability. By manually testing the vulnerability, the penetration tester can verify the conditions under which it occurs, understand its impact, and confirm that it's not a false positive reported by the automated scanning tool. So the correct answer to this question is: B. Perform a manual test on the server.

Performing a manual test on the server is the best way to confirm the vulnerability and to determine its potential impact. This will involve attempting to exploit the vulnerability to verify that it is indeed present and can be used to gain unauthorized access or perform other malicious activities. Manual testing can also help to identify any additional vulnerabilities that may have been missed by the automated scanner.

B. Perform a manual test on the server. Running another scanner to compare (Option A) can help to confirm the results but is not necessarily the best way to ensure the vulnerability is a true positive. Checking the results on the scanner (Option C) and looking for the vulnerability online (Option D) are not reliable methods for confirming the vulnerability. Performing a manual test on the server (Option B) is the best way to ensure the vulnerability is a true positive as it allows the tester to directly interact with the server and confirm the vulnerability exists.