1. Home
  2. CompTIA
  3. PT0-002

CompTIA PT0-002 Online Practice Questions and Exam Preparation

PT0-002 Exam Details

  • Exam Code
    :PT0-002
  • Exam Name
    :CompTIA PenTest+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :455 Q&As
  • Last Updated
    :May 31, 2026

CompTIA PT0-002 Online Questions & Answers

  • Question 161:

    A penetration tester has established an on-path position between a target host and local network services but has not been able to establish an on-path position between the target host and the Internet. Regardless, the tester would like to subtly redirect HTTP connections to a spoofed server IP.

    Which of the following methods would BEST support the objective?

    A. Gain access to the target host and implant malware specially crafted for this purpose.
    B. Exploit the local DNS server and add/update the zone records with a spoofed A record.
    C. Use the Scapy utility to overwrite name resolution fields in the DNS query response.
    D. Proxy HTTP connections from the target host to that of the spoofed host.

  • Question 162:

    When planning a penetration-testing effort, clearly expressing the rules surrounding the optimal time of day for test execution is important because:

    A. security compliance regulations or laws may be violated.
    B. testing can make detecting actual APT more challenging.
    C. testing adds to the workload of defensive cyber- and threat-hunting teams.
    D. business and network operations may be impacted.

  • Question 163:

    After performing a web penetration test, a security consultant is ranking the findings by criticality.

    Which of the following standards or methodologies would be best for the consultant to use for reference?

    A. OWASP
    B. MITRE ATTandCK
    C. PTES
    D. NIST

  • Question 164:

    A penetration-testing team needs to test the security of electronic records in a company's office. Per the terms of engagement, the penetration test is to be conducted after hours and should not include circumventing the alarm or performing destructive entry. During outside reconnaissance, the team sees an open door from an adjoining building.

    Which of the following would be allowed under the terms of the engagement?

    A. Prying the lock open on the records room
    B. Climbing in an open window of the adjoining building
    C. Presenting a false employee ID to the night guard
    D. Obstructing the motion sensors in the hallway of the records room

  • Question 165:

    A penetration tester is examining a Class C network to identify active systems quickly. Which of the following commands should the penetration tester use?

    A. nmap sn 192.168.0.1/16
    B. nmap sn 192.168.0.1-254
    C. nmap sn 192.168.0.1 192.168.0.1.254
    D. nmap sN 192.168.0.0/24

  • Question 166:

    A penetration tester is attempting to discover live hosts on a subnet quickly. Which of the following commands will perform a ping scan?

    A. nmap -sn 10.12.1.0/24
    B. nmap -sV -A 10.12.1.0/24
    C. nmap -Pn 10.12.1.0/24
    D. nmap -sT -p- 10.12.1.0/24

  • Question 167:

    A private investigation firm is requesting a penetration test to determine the likelihood that attackers can gain access to mobile devices and then exfiltrate data from those devices. Which of the following is a social-engineering method that, if successful, would MOST likely enable both objectives?

    A. Send an SMS with a spoofed service number including a link to download a malicious application.
    B. Exploit a vulnerability in the MDM and create a new account and device profile.
    C. Perform vishing on the IT help desk to gather a list of approved device IMEIs for masquerading.
    D. Infest a website that is often used by employees with malware targeted toward x86 architectures.

  • Question 168:

    PCI DSS requires which of the following as part of the penetration-testing process?

    A. The penetration tester must have cybersecurity certifications.
    B. The network must be segmented.
    C. Only externally facing systems should be tested.
    D. The assessment must be performed during non-working hours.

  • Question 169:

    Which of the following social engineering techniques involves sending fraudulent emails that appear legitimate in order to trick recipients into providing sensitive information?

    A. Tailgating
    B. Spear phishing
    C. Whaling
    D. Email phishing

  • Question 170:

    Which of the following would a company's hunt team be MOST interested in seeing in a final report?

    A. Executive summary
    B. Attack TTPs
    C. Methodology
    D. Scope details

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your PT0-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.