When DNS is being used for load balancing, why would a penetration tester choose to identify a scan target by its IP address rather than its host name?
When DNS is being used for load balancing, why would a penetration tester choose to identify a scan target by its IP address rather than its host name?
When DNS is used for load balancing, a penetration tester may choose to identify a scan target by its IP address rather than its host name because a single domain name may have multiple IP addresses. This is a common practice in load balancing, where multiple IP addresses corresponding to different servers are associated with one domain name. By targeting the IP address directly, the tester can be sure which specific server is being scanned and avoid issues related to load balancing, such as requests being distributed to different servers.
Answer is "D" for sure.
D is the most correct - A single domain could be associated which could be a pool of IP address, in this situation. the question is load balancing, your scan may fail, depending on how the load balancer is configured, your return traffic may not follow the same path it left on.
And C is almost wrong..
A and D are just as correct too..