Question

A company contracts a security engineer to perform a penetration test of its client-facing web portal.

Which of the following activities would be MOST appropriate?

A. Use a protocol analyzer against the site to see if data input can be replayed from the browser
B. Scan the website through an interception proxy and identify areas for the code injection
C. Scan the site with a port scanner to identify vulnerable services running on the web server
D. Use network enumeration tools to identify if the server is running behind a load balancer

Answer 1

The most appropriate activity would be to scan the website through an interception proxy and identify areas for code injection.

Step-by-step explanation:

The most appropriate activity for the security engineer to perform in a penetration test of the company's client-facing web portal would be B. Scan the website through an interception proxy and identify areas for code injection. This activity involves using an interception proxy to scan the website and identify vulnerabilities that can be exploited to inject malicious code into the site.

By identifying these areas, the security engineer can help the company address and strengthen the security of the web portal.

Using a protocol analyzer (option A) would only help in examining data input from the browser, but it may not provide insights into vulnerabilities.

Scanning the site with a port scanner (option C) would identify vulnerable services, but it may not specifically target the web server and the web portal. Lastly, using network enumeration tools (option D) would help in identifying if the server is running behind a load balancer but may not provide direct insights into the security of the web portal.