MK0-201 Exam Details

  • Exam Code
    :MK0-201
  • Exam Name
    :Certified Penetration Testing Specialist (CPTS)
  • Certification
    :Mile2 Certifications
  • Vendor
    :Mile2
  • Total Questions
    :247 Q&As
  • Last Updated
    :Jul 14, 2026

Mile2 MK0-201 Online Questions & Answers

  • Question 61:

    A Windows computer that has not been hardened properly might allow NULL connection from a remote host. Which of the following commands would be used by a remote attacker to attempt connecting using NULL session?

    A. net use \\servername\ipc$NULL/u
    B. net use \\servername\ipc$u:
    C. net share \\servername\ipc$/u:
    D. net use \\servername\ipc$/u:NULL

  • Question 62:

    Which of the following capabilities do rootkits have?Choose all that apply.

    A. Hide any file
    B. Hide any process
    C. Hide any listening port
    D. Cause a blue screen of death on Windows computers.

  • Question 63:

    When a network switch receives a very large quantity of random MAC addresses which would overfill the Content Addressable Memory (CAM) table,how will the switch react?

    A. It will drop packets until the tables are cleard and then will resume normal processing.
    B. It will drop the oldest entries in theCAM table to make room for the new packets and will continue working normally
    C. It will revert to being a HUB and will broadcast all traffic on each of the ports
    D. It is impossible to flood the MAC tables because of their very large size.

  • Question 64:

    SSL can be used to protect information sent over a public network while surfing the web.

    During the establishment of a secure SSL session,on which side of the communication link is the session key created?

    A. It is generated by the server
    B. It is generated by the client
    C. It is preconfigured on the web server
    D. There is no session key used,only public and private keys are being used

  • Question 65:

    If IPSec cannot be implemented to secure network communication from sniffing,what program would be an alternative choice for secure terminal logins and file transfers on Windows computers?Choose the best answer.

    A. Hyperterm
    B. puTTY
    C. Sterm
    D. WinPCap

  • Question 66:

    Why are SYN port scans not as stealthy as what they originally were several years ago?Choose two.

    A. Many firewall rulesets detect and block SYN scans
    B. IDS systems look for SYN flag packets due to the proliferation of SYN flood-based denial of service attacks
    C. RFC 3502 has redefined the TCP three-way handshake thus changing how SYN flags are used
    D. The Internet backtone routers all block SYN flag packets according to new RFC 3705

  • Question 67:

    When dealing with Wireless Local Area Networks a client will associate with the closest access point.What does the closest access point mean in such a case?

    A. The access point that is geographically located the closest to the client
    B. The access point that has the strongest signal received by the client
    C. The access point that has a frequency that is the closest to the frequency used by the client
    D. The access point that has the least number of client connected at the specific time.

  • Question 68:

    Bryce, who is a great security professional with a perfect track record,has just been called into his supervisor's office.

    His supervisor has the sad task of letting him know that hes the next position being cut in their downsizing effort.Bryce has been known to be a mellow type of person but the version of being unemployed after working for 25 years at the same company is just a bit too much for him.He cannot understand why newer employees with only a few years of experience have not been fired before him and why he is the one that must leave.Bryce tells himself that is employer is going to pay dearly for this and hes planning to use his skills to cause disruption within the company infrastructure.

    Which of the following term would best describe the reaction of Bryce?

    A. Cracker
    B. Disgruntied Employee
    C. Ethical Hacker
    D. Revenge Master

  • Question 69:

    Which of the following are reasons why fragment-based port scans are often used by attackers?Choose two.

    A. Simple non-stateful packet filtering devices can sometimes be bypassed
    B. Reassembling fragmented packets is not time or processor intensive
    C. RFC 1121 requires that all routers pass fragmented packets
    D. Firewalls may be configured for high throughput and thus dont reassemble and inspect fragmented packets

  • Question 70:

    A normal connection is usally established using a TCP Three Way handshake where sequences of packets are sent as follows;Syn,Syn-Ack,Ack.A malicious attacker probing a remote target is sending a Syn packet to a target;however,when he gets a Syn-Ack response from the target,he always sends a Reset packet (RST)instead of completing the three way handshake with an Ack packet as per the protocol. What is the attackers goal when doing this?Choose the best answer.

    A. Attacker does not like to follow protocols and agreements
    B. Attacker has his own modified protocol stacks
    C. Attacker attempts to avoid being logged on remote hosts
    D. Attacker attempts to avoid sending too much traffic

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Mile2 exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your MK0-201 exam preparations and Mile2 certification application, do not hesitate to visit our Vcedump.com to find your solutions here.