Dig — CompTIA PenTest+ (PT0-002) Practice Questions
Dig (Domain Information Groper) is a command-line DNS lookup utility widely used by penetration testers and administrators to query DNS servers for specific record types and inspect raw responses. On the PT0-002 exam, dig is a representative tool for DNS reconnaissance tasks including querying individual record types, testing zone transfer permissions, and tracing delegation paths. Unlike simpler tools, dig returns full response sections including flags and TTL values that can help identify misconfigurations or infer network topology. Candidates should be comfortable interpreting dig output and knowing which flags and query types are relevant during a penetration test.
Free questions on dig
Which tool is commonly used for DNS reconnaissance and zone transfers?
Free question · easy · full answer + explanation
More dig questions in the full bank
- You need to perform reconnaissance on a target network. Which command-line tool performs DNS enumeration? Unlock answer & explanation →
- Which tool is commonly used for DNS enumeration? Unlock answer & explanation →