A penetration test is being scoped for a set of web services with API endpoints. The APIs will be hosted on existing web application servers. Some of the new APIs will be available to unauthenticated users, but some will only be available to authenticated users. Which of the following tools or activities would the penetration tester MOST likely use or do during the engagement? (Select TWO.)
A) Static code analyzer
B) Intercepting proxy
C) Port scanner
D) Reverse engineering
E) Reconnaissance gathering
F) User acceptance testing
Correct Answer:
Verified
Q420: While an employee is on vacation, suspicion
Q421: When implementing a penetration testing program, the
Q422: A security manager needed to protect a
Q423: A company is migrating systems from an
Q424: After investigating virus outbreaks that have cost
Q426: A large company with a very complex
Q427: Ann, a member of the finance department
Q428: An analyst is investigating behavior on a
Q429: A security administrator adding a NAC requirement
Q430: A security analyst is inspecting pseudocode of
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents