PT0-001 Exam Details

  • Exam Code
    :PT0-001
  • Exam Name
    :CompTIA PenTest+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :306 Q&As
  • Last Updated
    :Apr 01, 2024

CompTIA PT0-001 Online Questions & Answers

  • Question 141:

    A penetration tester has identified a directory traversal vulnerability. Which of the following payloads could have helped the penetration tester identify this vulnerability?

    A. `or `folder' like `file';  
    B. || is /tmp/
    C. ">document.location=/root/
    D. andand dir C:/
    E. ../../../../../../../../

  • Question 142:

    A penetration tester is required to perform OSINT on staff at a target company after completing the infrastructure aspect. Which of the following would be the BEST step for the penetration tester to take?

    A. Obtain staff information by calling the company and using social engineering techniques.
    B. Visit the client and use impersonation to obtain information from staff.
    C. Send spoofed emails to staff to see if staff will respond with sensitive information.
    D. Search the Internet for information on staff such as social networking sites.

  • Question 143:

    After delivering a draft of a penetration test report, a development team has raised concerns about an issue categorized as "high." A cloud storage bucket is configured to allow read access to the public, but writing to objects within the bucket is restricted to authorized users. The bucket contains only publicly available images that can already be found on the application homepage. Which of the following severity levels should the penetration tester consider?

    A. Critical
    B. Medium
    C. Informational
    D. Low

  • Question 144:

    In which of the following scenarios would a tester perform a Kerberoasting attack?

    A. The tester has compromised a Windows device and dumps the LSA secrets.
    B. The tester needs to retrieve the SAM database and crack the password hashes.
    C. The tester has compromised a limited-privilege user and needs to target other accounts for lateral movement.
    D. The tester has compromised an account and needs to dump hashes and plaintext passwords from the system.

  • Question 145:

    A security assessor completed a comprehensive penetration test of a company and its networks and systems.

    During the assessment, the tester identified a vulnerability in the crypto library used for TLS on the company's intranet-wide payroll web application. However, the vulnerability has not yet been patched by the vendor, although a patch is expected within days. Which of the following strategies would BEST mitigate the risk of impact?

    A. Modify the web server crypto configuration to use a stronger cipher-suite for encryption, hashing, and digital signing.
    B. Implement new training to be aware of the risks in accessing the application. This training can be decommissioned after the vulnerability is patched.
    C. Implement an ACL to restrict access to the application exclusively to the finance department. Reopen the application to company staff after the vulnerability is patched.
    D. Require payroll users to change the passwords used to authenticate to the application. Following the patching of the vulnerability, implement another required password change.

  • Question 146:

    A penetration tester is designing a phishing campaign and wants to build list of users (or the target organization. Which of the following techniques would be the MOST appropriate? (Select TWO)

    A. Query an Internet WHOIS database.
    B. Search posted job listings.
    C. Scrape the company website.
    D. Harvest users from social networking sites.
    E. Socially engineer the corporate call center.

  • Question 147:

    Which of the following is an important stakeholder to notify when penetration testing has begun?

    A. System owner
    B. Remediation manager
    C. Compliance assessor
    D. Patching team

  • Question 148:

    Which of the following can be used to perform online password attacks against RDP?

    A. Hashcat
    B. John the Ripper
    C. Aircrack-ng
    D. Ncrack

  • Question 149:

    A penetration tester attempts to perform a UDP port scan against a remote target using an Nmap tool installed onto a non-Kali Linux image. For some reason, the UDP scan falls to start. Which of the following would MOST likely help to resolve the issue?

    A. Install the latest version of the tool.
    B. Review local iptables for existing drop rules.
    C. Relaunch the tool with elevated privileges.
    D. Enable both IPv4 and IPv6 forwarding.

  • Question 150:

    A penetration tester discovers an anonymous FTP server that is sharing the C:\drive. Which of the following is the BEST exploit?

    A. Place a batch script in the startup folder for all users.
    B. Change a service binary location path to point to the tester's own payload.
    C. Escalate the tester's privileges to SYSTEM using the at.exe command.
    D. Download, modify, and reupload a compromised registry to obtain code execution.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PT0-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.