MK0-201 Exam Details

  • Exam Code
    :MK0-201
  • Exam Name
    :Certified Penetration Testing Specialist (CPTS)
  • Certification
    :Mile2 Certifications
  • Vendor
    :Mile2
  • Total Questions
    :247 Q&As
  • Last Updated
    :Jul 14, 2026

Mile2 MK0-201 Online Questions & Answers

  • Question 151:

    Bob is doing a penetration test.

    He was able to get system level access on one of the servers exploiting one of the known weaknesses of the web server.

    Bob attempted to copy the SAM database but it was locked and his operation was not allowed.

    How could Bob succeed in getting a copy of the SAM database if it locked while the system is up and running?

    A. By bringing the system to single user mode
    B. By running samdumpt to create a backup of the SAM
    C. By running rdisk /s to create an unlocked backup copy of the SAM
    D. By changing the permissions on the file using his System privileges

  • Question 152:

    You have collected a series of messages that are all encrypted.

    You do not have access to the matching plaintext nor do you have any idea of the key and algorithm that were used to encrypt those messages.You will attempt a crypto attack in order to find the key.

    How would you call such an attack?

    A. chosen Plaintext Attack
    B. Known ciphertext attack
    C. Chosen Key Attack
    D. Cliphertext only attack

  • Question 153:

    Which of the following is the best security risk that has been experienced within applications over the past few years?

    A. Buffer Overflow
    B. Heap Overflow
    C. String Overflow
    D. Format Bug Overflow

  • Question 154:

    What does the union operation perform when attempting to execute an SQL Injection through a web form?

    A. Union Operation permits combining two results
    B. Union Operation permits changing the DB password
    C. Union operation is used to combine two accounts
    D. Union operation is used to combine two tables

  • Question 155:

    There is a method which allows you to find information on hosts located behind a firewall by using packets similar to the packets used by Traceroute.

    This method attempts to find out what are the rules in place on the gateway.

    What is the name of this method?

    A. NULL Scan
    B. Firewalking
    C. Tracert
    D. FWpenetrate

  • Question 156:

    What is one way an attacker can use to determine if a database front-end application is vulnerable to SQL injection?

    A. By entering a single star (*)in the username field.
    B. By entering all outgoing TCP connections after browsing the web application.
    C. There is no way to check,they just have to attempt on attack.
    D. By entering a single quota ( ) in the password field.

  • Question 157:

    Billybastard.c and pipeupadmin are examples of what type of attack?Choose the best answer.

    A. Denial of service
    B. Privilege escalation
    C. FTP bounce
    D. SQL Injection

  • Question 158:

    What is the most secure method of implementing Software Restriction Policies to prevent users from running both unauthorized and undesirable software?Choose the best answer.

    A. Define a policy to permit software found only in specified paths and disallow all else
    B. Define a policy to permit software based only upon specified filenames and disallow all else
    C. Define a policy to permit all software except those based upon specified filenames
    D. Define a policy to permit software only based upon specified executable hashes and disallow all else

  • Question 159:

    What are the possible countermeasures to buffer overflow exploits?Choose all that apply.

    A. Apply patches as soon as patches testing is completed
    B. Learn 0-day exploits from hacker websites
    C. Close the port of service at the firewall if there is no patch yet avilable
    D. Run application and services with the least privilege necessary

  • Question 160:

    Johny has been trying to defeat a crypto system for some time. He has in his possession a whole collection of ciphertext documents that were captured from the network.

    However,he does not know what algorithm or plain text was used to create this ciphertext.

    Through statistical analysis he is attempting to decipher the encrypted text.

    What would you call such an attack?

    A. Known Plaintext attack
    B. Ciphertext Only Attack
    C. Chosen Ciphertext Attack
    D. Chosen Plaintext Attack

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Mile2 exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your MK0-201 exam preparations and Mile2 certification application, do not hesitate to visit our Vcedump.com to find your solutions here.