Question

A company contracts a security consultant to perform a remote white-box penetration test. The company wants the consultant to focus on Internet-facing services without negatively impacting production services.

Which of the following is the consultant MOST likely to use to identify the company's attack surface? (Choose two.)

A. Web crawler
B. WHOIS registry
C. DNS records
D. Companyג€™s firewall ACL
E. Internal routing tables
F. Directory service queries

Answer 1

A security consultant would most likely use a web crawler and DNS records to identify a company's attack surface during a remote white-box penetration test.

Step-by-step explanation:

When conducting a remote white-box penetration test, a security consultant would typically use multiple methods to identify the company's attack surface. Two commonly used methods are:

1. Web crawler: A web crawler is a tool that systematically browses the internet, following links and collecting information about web pages. By using a web crawler, the consultant can identify the internet-facing services of the company and gather information about them.
2. DNS records: Domain Name System (DNS) records provide information about the internet domain name and its associated IP addresses. By analyzing the DNS records, the consultant can identify the company's internet-facing services and determine potential attack vectors.

These methods allow the security consultant to identify the attack surface without negatively impacting production services.