A penetration tester is testing a new version of a mobile application in a sandbox environment. To intercept and decrypt the traffic between the application and the external API, the tester has created a private root CA and issued a certificate from it. Even though the tester installed the root CA into the trusted stone of the smartphone used for the tests, the application shows an error indicating a certificate mismatch and does not connect to the server. Which of the following is the MOST likely reason for the error? A. TCP port 443 is not open on the firewall B. The API server is using SSL instead of TLS C. The tester is using an outdated version of the application D. The application has the API certificate pinned. Â Suggested Answer: D Community Answer: D This question is in PT0-002 CompTIA PenTest+ Exam For getting CompTIA PenTest+ Certificate Disclaimers: The website is not related to, affiliated with, endorsed or authorized by CompTIA. Trademarks, certification & product names are used for reference only and belong to CompTIA. The website does not contain actual questions and answers from CompTIA's Certification Exams.
Please login or Register to submit your answer
