Home / CompTIA / PT0-002 / List of questions

CompTIA PT0-002 Practice Test - Questions Answers, Page 23

Add to Whishlist

List of questions

Question 221

Report

Which of the following documents is agreed upon by all parties associated with the penetrationtesting engagement and defines the scope, contacts, costs, duration, and deliverables?

Become a Premium Member for full access

Unlock Premium Member

Question 222

Report

In Python socket programming, SOCK_DGRAM type is:

Become a Premium Member for full access

Unlock Premium Member

Question 223

Report

Which of the following is the MOST important information to have on a penetration testing report that is written for the developers?

Become a Premium Member for full access

Unlock Premium Member

Question 224

Report

After gaining access to a Linux system with a non-privileged account, a penetration tester identifies the following file:

Which of the following actions should the tester perform FIRST?

Become a Premium Member for full access

Unlock Premium Member

Question 225

Report

Which of the following types of assessments MOST likely focuses on vulnerabilities with the objective to access specific data?

Become a Premium Member for full access

Unlock Premium Member

Question 226

Report

A penetration tester initiated the transfer of a large data set to verify a proof-of-concept attack as permitted by the ROE. The tester noticed the client's data included PII, which is out of scope, and immediately stopped the transfer. Which of the following MOST likely explains the penetration tester's decision?

Become a Premium Member for full access

Unlock Premium Member

Question 227

Report

A penetration tester exploited a vulnerability on a server and remotely ran a payload to gain a shell.

However, a connection was not established, and no errors were shown on the payload execution. The penetration tester suspected that a network device, like an IPS or next-generation firewall, was dropping the connection. Which of the following payloads are MOST likely to establish a shell successfully?

Become a Premium Member for full access

Unlock Premium Member

Question 228

Report

A penetration tester has been hired to examine a website for flaws. During one of the time windows for testing, a network engineer notices a flood of GET requests to the web server, reducing the website's response time by 80%. The network engineer contacts the penetration tester to determine if these GET requests are part of the test. Which of the following BEST describes the purpose of checking with the penetration tester?

Become a Premium Member for full access

Unlock Premium Member

Question 229

Report

Which of the following is the BEST resource for obtaining payloads against specific network infrastructure products?

Become a Premium Member for full access

Unlock Premium Member

Question 230

Report

A penetration tester gives the following command to a systems administrator to execute on one of the target servers:

rm -f /var/www/html/G679h32gYu.php

Which of the following BEST explains why the penetration tester wants this command executed?

Become a Premium Member for full access

Unlock Premium Member

Total 464 questions

First

Prev

Next

Last

Go to page: of 47

Question 221 (0)

Which of the following documents is agreed upon by all parties associated with the penetrationtesting engagement and defines the scope, contacts, costs, duration, and deliverables?

Question 222 (0)

In Python socket programming, SOCK_DGRAM type is:

Question 223 (0)

Which of the following is the MOST important information to have on a penetration testing report that is written for the developers?

Question 224 (0)

After gaining access to a Linux system with a non-privileged account, a penetration tester identifies the following file: Which of the following actions should the tester perform FIRST?

Question 225 (0)

Which of the following types of assessments MOST likely focuses on vulnerabilities with the objective to access specific data?

Question 226 (0)

A penetration tester initiated the transfer of a large data set to verify a proof-of-concept attack as permitted by the ROE. The tester noticed the client's data included PII, which is out of scope,

Question 227 (0)

A penetration tester exploited a vulnerability on a server and remotely ran a payload to gain a shell. However, a connection was not established, and no errors were shown on the payload execution.

Question 228 (0)

A penetration tester has been hired to examine a website for flaws. During one of the time windows for testing, a network engineer notices a flood of GET requests to the web server, reducing the web

Question 229 (0)

Which of the following is the BEST resource for obtaining payloads against specific network infrastructure products?

Question 230 (0)

A penetration tester gives the following command to a systems administrator to execute on one of the target servers: rm -f /var/www/html/G679h32gYu.php Which of the following BEST explains why the

Open VPLUS File

Convert VPLUS to PDF

Related questions

A penetration tester gains access to a system and is able to migrate to a user process: Given the output above, which of the following actions is the penetration tester performing? (Choose two.)

After successfully compromising a remote host, a security consultant notices an endpoint protection software is running on the host. Which of the following commands would be best for the consultant to use to terminate the protection software and its child processes?

A penetration tester is conducting an assessment against a group of publicly available web servers and notices a number of TCP resets returning from one of the web servers. Which of the following is MOST likely causing the TCP resets to occur during the assessment?

When accessing the URL http://192.168.0-1/validate/user.php , a penetration tester obtained the following output: ..d index: eid in /apache/www/validate/user.php line 12 ..d index: uid in /apache/www/validate/user.php line 13 ..d index: pw in /apache/www/validate/user.php line 14 ..d index: acl in /apache/www/validate/user.php line 15

A Chief Information Security Officer wants a penetration tester to evaluate the security awareness level of the company's employees. Which of the following tools can help the tester achieve this goal?

An organization is using Android mobile devices but does not use MDM services. Which of the following describes an existing risk present in this scenario?

A penetration tester is conducting an unknown environment test and gathering additional information that can be used for later stages of an assessment. Which of the following would most likely produce useful information for additional testing?

Which of the following components should a penetration tester most likely include in a report at the end of an assessment?

A penetration tester was hired to test Wi-Fi equipment. Which of the following tools should be used to gather information about the wireless network?

A consulting company is completing the ROE during scoping. Which of the following should be included in the ROE?

Unlock Premium Member Feature for PT0-002

BASIC - 1 Month

$ 3

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PLUS - 2 Months

$ 10

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PRO - 6 Months

$ 20

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

BASIC - 1 Month

$ 3

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PLUS - 2 Months

$ 10

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PRO - 6 Months

$ 20

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

How to open VPLUS file?

Convert VPLUS to PDF (DOCX)