A penetration test is being scoped for a set of web services with API endpoints. The APIs will be hosted on existing web application servers. Some of the new APIs will be available to unauthenticated users, but some will only be available to authenticated users. Which of the following tools or activities would the penetration tester MOST likely use or do during the engagement? (Choose two.)
A) Static code analyzer
B) Intercepting proxy
C) Port scanner
D) Reverse engineering
E) Reconnaissance gathering
F) User acceptance testing
Correct Answer:
Verified
Q206: A security analyst is reviewing the following
Q207: A security engineer is attempting to convey
Q208: After a large organization has completed the
Q209: A company is transitioning to a new
Q210: A Chief Security Officer (CSO) is reviewing
Q212: An enterprise with global sites processes and
Q213: When reviewing KRIs of the email security
Q214: A company wants to confirm sufficient executable
Q215: During the decommissioning phase of a hardware
Q216: The government is concerned with remote military
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents