ExamGecko
Search Search Login
Home Home / CompTIA / PT0-002

CompTIA PT0-002 Practice Test - Questions Answers, Page 20

Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

When developing a shell script intended for interpretation in Bash, the interpreter /bin/bash should be explicitly specified. Which of the following character combinations should be used on the first line of the script to accomplish this goal?
During an engagement, a junior penetration tester found a multihomed host that led to an unknown network segment. The penetration tester ran a port scan against the network segment, which caused an outage at the customer's factory. Which of the following documents should the junior penetration tester most likely follow to avoid this issue in the future?
Given the following user-supplied data: www.comptia.com/info.php?id=1 AND 1=1 Which of the following attack techniques is the penetration tester likely implementing?
A penetration tester has been provided with only the public domain name and must enumerate additional information for the public-facing assets. INSTRUCTIONS Select the appropriate answer(s), given the output from each section. Output 1
A penetration tester will be performing a vulnerability scan as part of the penetration test on a client's website. The tester plans to run several Nmap scripts that probe for vulnerabilities while avoiding detection. Which of the following Nmap options will the penetration tester MOST likely utilize?
A penetration tester ran the following commands on a Windows server: Which of the following should the tester do AFTER delivering the final report?
A penetration tester is reviewing the logs of a proxy server and discovers the following URLs: https://test.comptia.com/profile.php?userid=1546 https://test.cpmptia.com/profile.php?userid=5482 https://test.comptia.com/profile.php?userid=3618 Which of the following types of vulnerabilities should be remediated?
A penetration tester is conducting an assessment for an e-commerce company and successfully copies the user database to the local machine. After a closer review, the penetration tester identifies several high-profile celebrities who have active user accounts with the online service. Which of the following is the most appropriate next step?
A penetration tester is conducting an assessment on 192.168.1.112. Given the following output: [ATTEMPT] target 192.168.1.112 - login 'root' - pass 'abcde' [ATTEMPT] target 192.168.1.112 - login 'root' - pass 'edcfg' [ATTEMPT] target 192.168.1.112 - login 'root' - pass 'qazsw' [ATTEMPT] target 192.168.1.112 - login 'root' -- pass ''tyuio'' Which of the following is the penetration tester conducting?
A client would like to have a penetration test performed that leverages a continuously updated TTPs framework and covers a wide variety of enterprise systems and networks. Which of the following methodologies should be used to BEST meet the client's expectations?

Question 191

Report
Export
Collapse

A penetration tester gains access to a system and is able to migrate to a user process:

Given the output above, which of the following actions is the penetration tester performing?

(Choose two.)

A.
Redirecting output from a file to a remote system
A.
Redirecting output from a file to a remote system
Answers
B.
Building a scheduled task for execution
B.
Building a scheduled task for execution
Answers
C.
Mapping a share to a remote system
C.
Mapping a share to a remote system
Answers
D.
Executing a file on the remote system
D.
Executing a file on the remote system
Answers
E.
Creating a new process on all domain systems
E.
Creating a new process on all domain systems
Answers
F.
Setting up a reverse shell from a remote system
F.
Setting up a reverse shell from a remote system
Answers
G.
Adding an additional IP address on the compromised system
G.
Adding an additional IP address on the compromised system
Answers
Suggested answer: C, D

Explanation:

WMIC.exe is a built-in Microsoft program that allows command-line access to the Windows Management Instrumentation. Using this tool, administrators can query the operating system for detailed information about installed hardware and Windows settings, run management tasks, and even execute other programs or commands.

Question 192

Report
Export
Collapse

After gaining access to a previous system, a penetration tester runs an Nmap scan against a network with the following results:

The tester then runs the following command from the previous exploited system, which fails:

Which of the following explains the reason why the command failed?

A.
The tester input the incorrect IP address.
A.
The tester input the incorrect IP address.
Answers
B.
The command requires the ?-port 135 option.
B.
The command requires the ?-port 135 option.
Answers
C.
An account for RDP does not exist on the server.
C.
An account for RDP does not exist on the server.
Answers
D.
PowerShell requires administrative privilege.
D.
PowerShell requires administrative privilege.
Answers
Suggested answer: C

Question 193

Report
Export
Collapse

Which of the following assessment methods is MOST likely to cause harm to an ICS environment?

A.
Active scanning
A.
Active scanning
Answers
B.
Ping sweep
B.
Ping sweep
Answers
C.
Protocol reversing
C.
Protocol reversing
Answers
D.
Packet analysis
D.
Packet analysis
Answers
Suggested answer: A

Question 194

Report
Export
Collapse

During a penetration test, a tester is in close proximity to a corporate mobile device belonging to a network administrator that is broadcasting Bluetooth frames.

Which of the following is an example of a Bluesnarfing attack that the penetration tester can perform?

A.
Sniff and then crack the WPS PIN on an associated WiFi device.
A.
Sniff and then crack the WPS PIN on an associated WiFi device.
Answers
B.
Dump the user address book on the device.
B.
Dump the user address book on the device.
Answers
C.
Break a connection between two Bluetooth devices.
C.
Break a connection between two Bluetooth devices.
Answers
D.
Transmit text messages to the device.
D.
Transmit text messages to the device.
Answers
Suggested answer: B

Explanation:

Bluesnarfing is the unauthorized access of information from a wireless device through a Bluetooth connection, often between phones, desktops, laptops, and PDAs. This allows access to calendars, contact lists, emails and text messages, and on some phones, users can copy pictures and private videos.

Question 195

Report
Export
Collapse

A software company has hired a security consultant to assess the security of the company's software development practices. The consultant opts to begin reconnaissance by performing fuzzing on a software binary. Which of the following vulnerabilities is the security consultant MOST likely to identify?

A.
Weak authentication schemes
A.
Weak authentication schemes
Answers
B.
Credentials stored in strings
B.
Credentials stored in strings
Answers
C.
Buffer overflows
C.
Buffer overflows
Answers
D.
Non-optimized resource management
D.
Non-optimized resource management
Answers
Suggested answer: C

Explanation:

fuzzing introduces unexpected inputs into a system and watches to see if the system has any negative reactions to the inputs that indicate security, performance, or quality gaps or issues

Question 196

Report
Export
Collapse

A penetration tester has prepared the following phishing email for an upcoming penetration test:

Which of the following is the penetration tester using MOST to influence phishing targets to click on the link?

A.
Familiarity and likeness
A.
Familiarity and likeness
Answers
B.
Authority and urgency
B.
Authority and urgency
Answers
C.
Scarcity and fear
C.
Scarcity and fear
Answers
D.
Social proof and greed
D.
Social proof and greed
Answers
Suggested answer: B

Question 197

Report
Export
Collapse

During a penetration test, a tester is able to change values in the URL from example.com/login.php?id=5 to example.com/login.php?id=10 and gain access to a web application.

Which of the following vulnerabilities has the penetration tester exploited?

A.
Command injection
A.
Command injection
Answers
B.
Broken authentication
B.
Broken authentication
Answers
C.
Direct object reference
C.
Direct object reference
Answers
D.
Cross-site scripting
D.
Cross-site scripting
Answers
Suggested answer: C

Explanation:

Insecure direct object reference (IDOR) is a vulnerability where the developer of the application does not implement authorization features to verify that someone accessing data on the site is allowed to access that data.

Question 198

Report
Export
Collapse

Which of the following situations would MOST likely warrant revalidation of a previous security assessment?

A.
After detection of a breach
A.
After detection of a breach
Answers
B.
After a merger or an acquisition
B.
After a merger or an acquisition
Answers
C.
When an organization updates its network firewall configurations
C.
When an organization updates its network firewall configurations
Answers
D.
When most of the vulnerabilities have been remediated
D.
When most of the vulnerabilities have been remediated
Answers
Suggested answer: D

Question 199

Report
Export
Collapse

A penetration tester downloaded a Java application file from a compromised web server and identifies how to invoke it by looking at the following log:

Which of the following is the order of steps the penetration tester needs to follow to validate whether the Java application uses encryption over sockets?

A.
Run an application vulnerability scan and then identify the TCP ports used by the application.
A.
Run an application vulnerability scan and then identify the TCP ports used by the application.
Answers
B.
Run the application attached to a debugger and then review the application's log.
B.
Run the application attached to a debugger and then review the application's log.
Answers
C.
Disassemble the binary code and then identify the break points.
C.
Disassemble the binary code and then identify the break points.
Answers
D.
Start a packet capture with Wireshark and then run the application.
D.
Start a packet capture with Wireshark and then run the application.
Answers
Suggested answer: D

Question 200

Report
Export
Collapse

When planning a penetration-testing effort, clearly expressing the rules surrounding the optimal time of day for test execution is important because:

A.
security compliance regulations or laws may be violated.
A.
security compliance regulations or laws may be violated.
Answers
B.
testing can make detecting actual APT more challenging.
B.
testing can make detecting actual APT more challenging.
Answers
C.
testing adds to the workload of defensive cyber- and threat-hunting teams.
C.
testing adds to the workload of defensive cyber- and threat-hunting teams.
Answers
D.
business and network operations may be impacted.
D.
business and network operations may be impacted.
Answers
Suggested answer: D
Total 422 questions
Go to page: of 43
ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms