PT0-002 Domain 2: Attacks and Exploits

Two designs were proposed. Design A would test for insecure deserialization. Design B would perform privilege escalation checks. The team must pick the approach aligned with vendor best practices. Which choice is correct?

Multiple choice — select one answer

Answer choices

  1. a. Validate local and domain privilege boundaries
  2. b. Parameterized queries and input validation
  3. c. Test reflected and stored XSS with safe payloads
  4. d. Review parsers and object injection points

Architectural breakdown & explanation

Unsafe deserialization enables RCE. Compare with Validate local and domain privilege boundaries: Escalation paths are high impact.

Correct answer(s): d. Review parsers and object injection points

Exam domain: Domain 2: Attacks and Exploits (45% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the CompTIA PenTest+ bank. Run a full timed practice exam with domain-weighted random questions in your browser.