PT0-001 Exam Details

  • Exam Code
    :PT0-001
  • Exam Name
    :CompTIA PenTest+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :306 Q&As
  • Last Updated
    :Apr 01, 2024

CompTIA PT0-001 Online Questions & Answers

  • Question 201:

    A consultant is attempting to harvest credentials from unsecure network protocols in use by the organization. Which of the following commands should the consultant use?

    A. tcpdump
    B. john
    C. hashcat
    D. nc

  • Question 202:

    A tester has captured a NetNTLMv2 hash using Responder Which of the following commands will allow the tester to crack the hash using a mask attack?

    A. hashcat -m 5600 -r rulea/beat64.rule hash.txt wordliat.txt
    B. hashcax -m 500 hash.txt
    C. hashcandt -m 5600 -a 3 haah.txt ?a?a?a?a?a?a?a?a
    D. hashcat -m 5600 -o reaulta.txt hash.txt wordliat.txt

  • Question 203:

    A penetration tester has gained physical access to a facility and connected directly into the internal network. The penetration tester now wants to pivot into the server VLAN. Which of the following would accomplish this?

    A. Spoofing a printer's MAC address
    B. Abusing DTP negotiation
    C. Performing LLMNR poisoning
    D. Conducting an STP attack

  • Question 204:

    Which of the following exploits a vulnerability associated with IoT devices?

    A. Blue snarfing
    B. Simple certificate enrollment
    C. Heartbleed
    D. Mirai botnet

  • Question 205:

    A penetration tester identifies the following findings during an external vulnerability scan:

    Which of the following attack strategies should be prioritized from the scan results above?

    A. Obsolete software may contain exploitable components
    B. Weak password management practices may be employed
    C. Cryptographically weak protocols may be intercepted
    D. Web server configurations may reveal sensitive information

  • Question 206:

    After a recent penetration test, a company has a finding regarding the use of dictionary and seasonal passwords by its employees. Which of the following is the BEST control to remediate the use of common dictionary terms?

    A. Expand the password length from seven to 14 characters
    B. Implement password history restrictions
    C. Configure password filters
    D. Disable the accounts after five incorrect attempts
    E. Decrease the password expiration window

  • Question 207:

    A penetration tester used an ASP.NET web shell to gain access to a web application, which allowed the tester to pivot in the corporate network. Which of the following is the MOST important follow-up activity to complete after the tester delivers the report?

    A. Removing shells
    B. Obtaining client acceptance
    C. Removing tester-created credentials
    D. Documenting lessons learned
    E. Presenting attestation of findings

  • Question 208:

    A web server is running PHP, and a penetration tester is using LFI to execute commands by passing parameters through the URL. This is possible because server logs were poisoned to execute the PHP system ( ) function. Which of the following would retrieve the contents of the passwd file?

    A. ''andCMD_cat /etc/passwd--andid-34''
    B. ''andCMD=cat / etc/passwd%andid= 34''
    C. ''andCMD=cat ../../../../etc/passwd7id=34'
    D. ''andsystem(CMD) ''cat /etc/passedandid=34''

  • Question 209:

    An assessor begins an internal security test of the Windows domain internal.comptia.net. The assessor is given network access via DHCP, but is not given any network maps or target IP addresses. Which of the following commands can the assessor use to find any likely Windows domain controllers?

    A. dig -q any _kerberos._tcp.internal.comptia.net
    B. dig -q any _lanman._tcp.internal.comptia.net
    C. dig -q any _ntlm._tcp.internal.comptia.net
    D. dig -q any _smtp._tcp.internal.comptia.net

  • Question 210:

    While performing privilege escalation on a Windows 7 workstation, a penetration tester identifies a service that imports a DLL by name rather than an absolute path. To exploit this vulnerability, which of the following criteria must be met?

    A. Permissions not disabled in the DLL
    B. Weak folder permissions of a directory in the DLL search path
    C. Write permissions in the C:\Windows\System32\imports directory
    D. DLL not cryptographically signed by the vendor

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PT0-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.