PT0-003
Reconnaissance and Enumeration
hard
Question 9 of 21

A penetration tester is performing DNS enumeration against a target domain and discovers that the target's DNS server responds to zone transfer requests from any IP address. Which attack technique does this misconfiguration enable, and what information does it expose?

ADNS cache poisoning; it allows the attacker to inject false DNS records
BDNS zone transfer (AXFR); it exposes the complete list of DNS records including subdomains, mail servers, and internal hostnames
CDNS amplification; it allows the attacker to use the DNS server in DDoS attacks
DDNS hijacking; it allows the attacker to redirect all domain traffic

More Reconnaissance and Enumeration Questions

21 questions

Full CompTIA PenTest+ Practice Test

All topics covered

All CompTIA PenTest+ Questions

Browse by topic

Related Questions

Which type of reconnaissance involves gathering information about a target using publicly available ...

easy

Which tool is commonly used for network discovery and port scanning during the reconnaissance phase ...

easy

A penetration tester wants to identify email addresses, subdomains, and employee names associated wi...

medium

During reconnaissance, a penetration tester runs the following command to gather information about a...

medium

A penetration tester uses the Shodan search engine during reconnaissance. What type of information c...

medium
View all Reconnaissance and Enumeration questions

Educational Content — CertQnA practice questions are written against official exam objectives, covering the same domains tested on the real exam. All content is original and independent — not actual exam questions, not affiliated with any certification vendor. Learn more about our content policy

Discussion

Be the first to share your understanding of this concept

⚠️ Discussion is for concept clarification only. Do not share or request actual exam questions or answers.

Sign in to join the discussion

Sign InCreate free account