PT0-001 Exam Details

  • Exam Code
    :PT0-001
  • Exam Name
    :CompTIA PenTest+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :306 Q&As
  • Last Updated
    :Apr 01, 2024

CompTIA PT0-001 Online Questions & Answers

  • Question 31:

    A penetration tester is checking a script to determine why some basic math errors are persisting. The expected result was the program outputting “True”.

    Given the output from the console above, which of the following explains how to correct the errors in the script? (Choose two.)

    A. Change fi' to 'Endlf
    B. Remove the 'let' in front of 'dest=5+5'.
    C. Change the '=" to '-eq'.
    D. Change -Source* and 'dest' to "Ssource" and "Sdest"
    E. Change 'else' to 'elif.

  • Question 32:

    Which of the following is the BEST way to deploy vulnerability scanners with many networks segmented by firewalls with active IPS rules?

    A. Deploy a single scanner inside each network segment.
    B. Deploy many scanners inside one segment and allow any rules.
    C. Deploy one internal scanner and one external scanner.
    D. Deploy one internal scanner with heavy server resources.

  • Question 33:

    Click the exhibit button.

    Given the Nikto vulnerability, scan output shown in the exhibit, which of the following exploitation techniques might be used to exploit the target system? (Choose two.)

    A. Arbitrary code execution
    B. Session hijacking
    C. SQL injection D. Login credential brute-forcing
    E. Cross-site request forgery

  • Question 34:

    A company performed an annual penetration test of its environment. In addition to several new findings, all of the previously identified findings persisted on the latest report. Which of the following is the MOST likely reason?

    A. Infrastructure is being replaced with similar hardware and software.
    B. Systems administrators are applying the wrong patches.
    C. The organization is not taking action to remediate identified findings.
    D. The penetration testing tools were misconfigured.

  • Question 35:

    Which of the following tools would a penetration tester leverage to conduct OSINT? (Select TWO).

    A. Shodan
    B. SET
    C. BeEF
    D. Wireshark
    E. Maltego
    F. Dynamo

  • Question 36:

    Given the following Python script:

    Which of the following actions will it perform?

    A. ARP spoofing
    B. Port scanner
    C. Reverse shell
    D. Banner grabbing

  • Question 37:

    Which of Ihe following commands would allow a penetration tester to access a private network from the Internet in Metasploit?

    A. set rhost 192.168.1.10
    B. run autoroute -a 192.168.1.0/24
    C. db_nm«p -iL /tmp/privatehoots . txt
    D. use auxiliary/servet/aocka^a

  • Question 38:

    DRAG DROP

    Place each of the following passwords in order of complexity from least complex (1) to most complex (4), based on the character sets represented Each password may be used only once.

    Select and Place:

  • Question 39:

    Which of the following BEST describes some significant security weaknesses with an ICS, such as those used in electrical utility facilities, natural gas facilities, dams, and nuclear facilities?

    A. ICS vendors are slow to implement adequate security controls.
    B. ICS staff are not adequately trained to perform basic duties.
    C. There is a scarcity of replacement equipment for critical devices.
    D. There is a lack of compliance for ICS facilities.

  • Question 40:

    Consumer-based IoT devices are often less secure than systems built for traditional desktop computers. Which of the following BEST describes the reasoning for this?

    A. Manufacturers developing IoT devices are less concerned with security.
    B. It is difficult for administrators to implement the same security standards across the board.
    C. IoT systems often lack the hardware power required by more secure solutions.
    D. Regulatory authorities often have lower security requirements for IoT systems.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PT0-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.