Home / CompTIA / PT0-002 / List of questions

CompTIA PT0-002 Practice Test - Questions Answers, Page 33

Add to Whishlist

List of questions

Question 321

Report

A penetration tester runs the following command:

nmap -p- -A 10.0.1.10

Given the execution of this command, which of the following quantities of ports will Nmap scan?

Become a Premium Member for full access

Unlock Premium Member

Question 322

Report

Within a Python script, a line that states print (var) outputs the following:

[{'1' : 'CentOS', '2' : 'Ubuntu'), {'1' : 'Windows 10', '2' : 'Windows Server 2016'}]

Which of the following objects or data structures is var ?

Become a Premium Member for full access

Unlock Premium Member

Question 323

Report

A security engineer is trying to bypass a network IPS that isolates the source when the scan exceeds 100 packets per minute. The scope of the scan is to identify web servers in the 10.0.0.0/16 subnet.

Which of the following commands should the engineer use to achieve the objective in the least amount of time?

Become a Premium Member for full access

Unlock Premium Member

Question 324

Report

During a code review assessment, a penetration tester finds the following vulnerable code inside one of the web application files:

<% String id = request.getParameter('id'); %>

Employee ID: <%= id %>

Which of the following is the best remediation to prevent a vulnerability from being exploited, based on this code?

Become a Premium Member for full access

Unlock Premium Member

Question 325

Report

During a vulnerability scan a penetration tester enters the following Nmap command against all of the non-Windows clients:

nmap -sX -T4 -p 21-25, 67, 80, 139, 8080 192.168.11.191

The penetration tester reviews the packet capture in Wireshark and notices that the target responds with an RST packet flag set for all of the targeted ports. Which of the following does this information most likely indicate?

Become a Premium Member for full access

Unlock Premium Member

Question 326

Report

A penetration tester is testing a company's public API and discovers that specific input allows the execution of arbitrary commands on the base operating system. Which of the following actions should the penetration tester take next?

Become a Premium Member for full access

Unlock Premium Member

Question 327

Report

A penetration tester wants to accomplish ARP poisoning as part of an attack. Which of the following tools will the tester most likely utilize?

Become a Premium Member for full access

Unlock Premium Member

Question 328

Report

Which of the following describes a globally accessible knowledge base of adversary tactics and techniques based on real-world observations?

Become a Premium Member for full access

Unlock Premium Member

Question 329

Report

A penetration tester is performing a vulnerability scan on a large ATM network. One of the organization's requirements is that the scan does not affect legitimate clients' usage of the ATMs. Which of the following should the tester do to best meet the company's vulnerability scan requirements?

Become a Premium Member for full access

Unlock Premium Member

Question 330

Report

A penetration tester has been provided with only the public domain name and must enumerate additional information for the public-facing assets.

INSTRUCTIONS

Select the appropriate answer(s), given the output from each section.

Output 1

CompTIA PT0-002 image Question 330 97459 10022024175321000000

CompTIA PT0-002 image Question 330 97459 10022024175321000000

CompTIA PT0-002 image Question 330 97459 10022024175321000000

CompTIA PT0-002 image Question 330 97459 10022024175321000000

CompTIA PT0-002 image Question 330 97459 10022024175321000000

CompTIA PT0-002 image Question 330 97459 10022024175321000000

Become a Premium Member for full access

Unlock Premium Member

Total 464 questions

First

Prev

Next

Last

Go to page: of 47

Question 321 (0)

A penetration tester runs the following command: nmap -p- -A 10.0.1.10 Given the execution of this command, which of the following quantities of ports will Nmap scan?

Question 322 (0)

Within a Python script, a line that states print (var) outputs the following: [{'1' : 'CentOS', '2' : 'Ubuntu'), {'1' : 'Windows 10', '2' : 'Windows Server 2016'}] Which of the following objects o

Question 323 (0)

A security engineer is trying to bypass a network IPS that isolates the source when the scan exceeds 100 packets per minute. The scope of the scan is to identify web servers in the 10.0.0.0/16 subne

Question 324 (0)

During a code review assessment, a penetration tester finds the following vulnerable code inside one of the web application files: <% String id = request.getParameter('id'); %> Employee ID:

Question 325 (0)

During a vulnerability scan a penetration tester enters the following Nmap command against all of the non-Windows clients: nmap -sX -T4 -p 21-25, 67, 80, 139, 8080 192.168.11.191 The penetration t

Question 326 (0)

A penetration tester is testing a company's public API and discovers that specific input allows the execution of arbitrary commands on the base operating system. Which of the following actions shoul

Question 327 (0)

A penetration tester wants to accomplish ARP poisoning as part of an attack. Which of the following tools will the tester most likely utilize?

Question 328 (0)

Which of the following describes a globally accessible knowledge base of adversary tactics and techniques based on real-world observations?

Question 329 (0)

A penetration tester is performing a vulnerability scan on a large ATM network. One of the organization's requirements is that the scan does not affect legitimate clients' usage of the ATMs. Which o

Question 330 (0)

A penetration tester has been provided with only the public domain name and must enumerate additional information for the public-facing assets. INSTRUCTIONS Select the appropriate answer(s), given

Open VPLUS File

Convert VPLUS to PDF

Related questions

A penetration tester gains access to a system and is able to migrate to a user process: Given the output above, which of the following actions is the penetration tester performing? (Choose two.)

After successfully compromising a remote host, a security consultant notices an endpoint protection software is running on the host. Which of the following commands would be best for the consultant to use to terminate the protection software and its child processes?

A penetration tester is conducting an assessment against a group of publicly available web servers and notices a number of TCP resets returning from one of the web servers. Which of the following is MOST likely causing the TCP resets to occur during the assessment?

When accessing the URL http://192.168.0-1/validate/user.php , a penetration tester obtained the following output: ..d index: eid in /apache/www/validate/user.php line 12 ..d index: uid in /apache/www/validate/user.php line 13 ..d index: pw in /apache/www/validate/user.php line 14 ..d index: acl in /apache/www/validate/user.php line 15

A Chief Information Security Officer wants a penetration tester to evaluate the security awareness level of the company's employees. Which of the following tools can help the tester achieve this goal?

An organization is using Android mobile devices but does not use MDM services. Which of the following describes an existing risk present in this scenario?

A penetration tester is conducting an unknown environment test and gathering additional information that can be used for later stages of an assessment. Which of the following would most likely produce useful information for additional testing?

Which of the following components should a penetration tester most likely include in a report at the end of an assessment?

A penetration tester was hired to test Wi-Fi equipment. Which of the following tools should be used to gather information about the wireless network?

A consulting company is completing the ROE during scoping. Which of the following should be included in the ROE?

Unlock Premium Member Feature for PT0-002

BASIC - 1 Month

$ 3

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PLUS - 2 Months

$ 10

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PRO - 6 Months

$ 20

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

BASIC - 1 Month

$ 3

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PLUS - 2 Months

$ 10

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

PRO - 6 Months

$ 20

Full latest questions

No CAPTCHA

New Updates

Export to VPLUS

Export to PDF - All questions

Team support

How to open VPLUS file?

Convert VPLUS to PDF (DOCX)