🔥 3-day streak
CompTIA PenTest+ (PT0-003)33 / 175
Question 33 of 175

During a web application test, you discover an endpoint that fetches remote URLs supplied by the user to generate link previews. The application blocks requests to RFC 1918 addresses and localhost by resolving the hostname once and validating the resulting IP before making the request. You control an external domain and its authoritative DNS server. Which technique most effectively bypasses this filter to reach an internal service?

Reviewed for accuracy · Report an issueNext question