PT0-001 Exam Details

  • Exam Code
    :PT0-001
  • Exam Name
    :CompTIA PenTest+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :306 Q&As
  • Last Updated
    :Apr 01, 2024

CompTIA PT0-001 Online Questions & Answers

  • Question 191:

    During an internal penetration test, several multicast and broadcast name resolution requests are observed traversing the network. Which of the following tools could be used to impersonate network resources and collect authentication

    requests?

    A. Ettercap
    B. Tcpdump
    C. Responder
    D. Medusa

  • Question 192:

    When performing compliance-based assessments, which of the following is the MOST important Key consideration?

    A. Additional rate
    B. Company policy
    C. Impact tolerance
    D. Industry type

  • Question 193:

    A penetration tester has access to a local machine running Linux, but the account has limited privileges. Which of the following types of files could the tester BEST use for privilege escalation?

    A. Binaries stored in /usr/bin
    B. Files with permission 4xxx
    C. Files stored in /root directory
    D. Files with the wrong ACL rules configured

  • Question 194:

    A company planned for and secured the budget to hire a consultant to perform a web application penetration test. Upon discovering vulnerabilities, the company asked the consultant to perform the following tasks:

    1.

    Code review

    2.

    Updates to firewall settings

    Which of the following has occurred in this situation?

    A. Scope creep
    B. Post-mortem review
    C. Risk acceptance
    D. Threat prevention

  • Question 195:

    A penetration tester has gained a root shell on a target Linux server and wants to have the server "check in" over HTTP using a GET request to the penetration tester's laptop once every hour, even after system reboots. The penetration tester wrote a bash script to perform this. Which of the following represents the BEST method to persist the script?

    A. Execute the script to run in a screen session.
    B. Use the nohup command to launch the script immune to logouts.
    C. Configure a systemd service at default run level to launch the script.
    D. Modify .bash_profile to launch the script in the background.

  • Question 196:

    A penetration tester is testing a web application and is logged in as a lower-privileged user. The tester runs arbitrary JavaScript within an application, which sends an XMLHttpRequest, resulting in exploiting features to which only an administrator should have access. Which of the following controls would BEST mitigate the vulnerability?

    A. Implement authorization checks.
    B. Sanitize all the user input.
    C. Prevent directory traversal.
    D. Add client-side security controls

  • Question 197:

    A file contains several hashes. Which of the following can be used in a pass-the-hash attack?

    A. NTLMv2
    B. Kerberos
    C. NTLMv1
    D. LMv2
    E. NTLM

  • Question 198:

    A penetration tester has been asked to conduct OS fingerprinting with Nmap using a company-provide text file that contain a list of IP addresses.

    Which of the following are needed to conduct this scan? (Select TWO).

    A. -O
    B. _iL
    C. _sV
    D. -sS
    E. -oN
    F. -oX

  • Question 199:

    A system security engineer is preparing to conduct a security assessment of some new applications. The applications were provided to the engineer as a set that contains only JAR files. Which of the following would be the MOST detailed method to gather information on the inner working of these applications?

    A. Launch the applications and use dynamic software analysis tools, including fuzz testing
    B. Use a static code analyzer on the JAR filet to look for code Quality deficiencies
    C. Decompile the applications to approximate source code and then conduct a manual review
    D. Review the details and extensions of the certificate used to digitally sign the code and the application

  • Question 200:

    A penetration tester obtained access to an internal host of a given target. Which of the following is the BEST tool to retrieve the passwords of users of the machine exploiting a well-knows architecture flaw of the Windows OS?

    A. Mimikatz
    B. John the Ripper
    C. RainCrack
    D. Hashcat

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PT0-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.