ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam
Go to Exam

Exam PT0-002 topic 1 question 129 discussion

Actual exam question from CompTIA's PT0-002
Question #: 129
Topic #: 1
[All PT0-002 Questions]

A penetration tester is testing a new version of a mobile application in a sandbox environment. To intercept and decrypt the traffic between the application and the external API, the tester has created a private root CA and issued a certificate from it. Even though the tester installed the root CA into the trusted stone of the smartphone used for the tests, the application shows an error indicating a certificate mismatch and does not connect to the server. Which of the following is the
MOST likely reason for the error?

  • A. TCP port 443 is not open on the firewall
  • B. The API server is using SSL instead of TLS
  • C. The tester is using an outdated version of the application
  • D. The application has the API certificate pinned.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by NotAHackerJustYet at Feb. 4, 2023, 11:47 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
NotAHackerJustYet
Highly Voted 2 years, 6 months ago
Selected Answer: D
Answer: D. The application has the API certificate pinned. This is the most likely reason for the error because the application is unable to validate the certificate issued by the tester's private root CA. Certificate pinning is a process where an application compares the certificate presented by the server with a predefined set of certificates and only accepts connections if the presented certificate is one of the predefined certificates. This means that the application will reject any certificate that is not in the predefined set, even if it is valid.
upvoted 13 times
...
fuzzyguzzy
Most Recent 11 months, 2 weeks ago
Selected Answer: D
The answer is D
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel