[Sep-2023] Feel CompTIA PT0-002 Dumps PDF Will likely be The best Option [Q116-Q140]

[Sep-2023] Feel CompTIA PT0-002 Dumps PDF Will likely be The best Option

PT0-002 exam torrent CompTIA study guide

NEW QUESTION # 116
A penetration tester is testing a new version of a mobile application in a sandbox environment. To intercept and decrypt the traffic between the application and the external API, the tester has created a private root CA and issued a certificate from it. Even though the tester installed the root CA into the trusted stone of the smartphone used for the tests, the application shows an error indicating a certificate mismatch and does not connect to the server. Which of the following is the MOST likely reason for the error?

• A. TCP port 443 is not open on the firewall
• B. The tester is using an outdated version of the application
• C. The application has the API certificate pinned.
• D. The API server is using SSL instead of TLS

Answer: C

NEW QUESTION # 117
A new security firm is onboarding its first client. The client only allowed testing over the weekend and needed the results Monday morning. However, the assessment team was not able to access the environment as expected until Monday. Which of the following should the security company have acquired BEFORE the start of the assessment?

• A. The expected time frame of the assessment
• B. The proper emergency contacts for the client
• C. The correct user accounts and associated passwords
• D. A signed statement of work

Answer: A

NEW QUESTION # 118
A penetration tester discovers during a recent test that an employee in the accounting department has been making changes to a payment system and redirecting money into a personal bank account. The penetration test was immediately stopped. Which of the following would be the BEST recommendation to prevent this type of activity in the future?

• A. Implement multifactor authentication
• B. Enforce mandatory employee vacations
• C. Install video surveillance equipment in the office
• D. Encrypt passwords for bank account information

Answer: A

NEW QUESTION # 119
A penetration tester wants to identify CVEs that can be leveraged to gain execution on a Linux server that has an SSHD running. Which of the following would BEST support this task?

• A. Run nmap with the -sV and -p22 options set against the target
• B. Run nmap with the -o, -p22, and -sC options set against the target
• C. Run nmap with the -sA option set against the target
• D. Run nmap with the --script vulners option set against the target

Answer: B

NEW QUESTION # 120
A penetration tester has obtained shell access to a Windows host and wants to run a specially crafted binary for later execution using the wmic.exe process call create function. Which of the following OS or filesystem mechanisms is MOST likely to support this objective?

• A. MP4 steganography
• B. PsExec
• C. PowerShell modules
• D. Alternate data streams

Answer: C

Explanation:
Explanation
"Windows Management Instrumentation (WMI) is a subsystem of PowerShell that gives admins access to powerful system monitoring tools."

NEW QUESTION # 121
Which of the following web-application security risks are part of the OWASP Top 10 v2017? (Choose two.)

• A. Injection flaws
• B. Buffer overflows
• C. Cross-site scripting
• D. Race-condition attacks
• E. Zero-day attacks
• F. Ransomware attacks

Answer: A,C

Explanation:
Explanation
A01-Injection
A02-Broken Authentication
A03-Sensitive Data Exposure
A04-XXE
A05-Broken Access Control
A06-Security Misconfiguration
A07-XSS
A08-Insecure Deserialization
A09-Using Components with Known Vulnerabilities
A10-Insufficient Logging & Monitoring

NEW QUESTION # 122
Given the following script:

Which of the following BEST characterizes the function performed by lines 5 and 6?

• A. Loops through variable b to count the results returned for the DNS query and prints that count to screen
• B. Retrieves the start-of-authority information for the zone on DNS server 10.10.10.10
• C. Performs a single DNS query for www.comptia.org and prints the raw data output
• D. Prints each DNS query result already stored in variable b

Answer: D

NEW QUESTION # 123
A penetration tester runs the unshadow command on a machine. Which of the following tools will the tester most likely use NEXT?

• A. Cain and Abel
• B. Mimikatz
• C. John the Ripper
• D. Hydra

Answer: C

NEW QUESTION # 124
Which of the following protocols or technologies would provide in-transit confidentiality protection for emailing the final security assessment report?

• A. DNSSEC
• B. FTPS
• C. AS2
• D. S/MIME

Answer: D

NEW QUESTION # 125
Given the following code:

Which of the following data structures is systems?

• A. A dictionary
• B. A tuple
• C. A tree
• D. An array

Answer: D

NEW QUESTION # 126
A penetration-testing team is conducting a physical penetration test to gain entry to a building. Which of the following is the reason why the penetration testers should carry copies of the engagement documents with them?

• A. To validate the billing information with the client
• B. As backup in case the original documents are lost
• C. As proof in case they are discovered
• D. To guide them through the building entrances

Answer: C

NEW QUESTION # 127
A penetration tester is contracted to attack an oil rig network to look for vulnerabilities. While conducting the assessment, the support organization of the rig reported issues connecting to corporate applications and upstream services for data acquisitions. Which of the following is the MOST likely culprit?

• A. Application failures
• B. Successful exploits
• C. Patch installations
• D. Bandwidth limitations

Answer: B

NEW QUESTION # 128
A client wants a security assessment company to perform a penetration test against its hot site. The purpose of the test is to determine the effectiveness of the defenses that protect against disruptions to business continuity.
Which of the following is the MOST important action to take before starting this type of assessment?

• A. Ensure the client has signed the SOW.
• B. Determine if the failover environment relies on resources not owned by the client.
• C. Verify the client has granted network access to the hot site.
• D. Establish communication and escalation procedures with the client.

Answer: A

NEW QUESTION # 129
A penetration tester conducted a vulnerability scan against a client's critical servers and found the following:

Which of the following would be a recommendation for remediation?

• A. Implement a patch management plan
• B. Utilize the secure software development life cycle
• C. Configure access controls on each of the servers
• D. Deploy a user training program

Answer: A

NEW QUESTION # 130
When preparing for an engagement with an enterprise organization, which of the following is one of the MOST important items to develop fully prior to beginning the penetration testing activities?

• A. Obtain an asset inventory from the client.
• B. Identify all third parties involved.
• C. Interview all stakeholders.
• D. Clarify the statement of work.

Answer: D

NEW QUESTION # 131
A penetration tester wrote the following script to be used in one engagement:

Which of the following actions will this script perform?

• A. Look for open ports.
• B. Listen for a reverse shell.
• C. Create an encrypted tunnel.
• D. Attempt to flood open ports.

Answer: A

NEW QUESTION # 132
A penetration tester runs the following command on a system:
find / -user root -perm -4000 -print 2>/dev/null
Which of the following is the tester trying to accomplish?

• A. Find files with the SUID bit set
• B. Find the /root directory on the system
• C. Set the SGID on all files in the / directory
• D. Find files that were created during exploitation and move them to /dev/null

Answer: D

NEW QUESTION # 133
During the scoping phase of an assessment, a client requested that any remote code exploits discovered during testing would be reported immediately so the vulnerability could be fixed as soon as possible. The penetration tester did not agree with this request, and after testing began, the tester discovered a vulnerability and gained internal access to the system. Additionally, this scenario led to a loss of confidential credit card data and a hole in the system. At the end of the test, the penetration tester willfully failed to report this information and left the vulnerability in place. A few months later, the client was breached and credit card data was stolen. After being notified about the breach, which of the following steps should the company take NEXT?

• A. Deny that the vulnerability existed
• B. Investigate the penetration tester.
• C. Accept that the client was right.
• D. Fire the penetration tester.

Answer: B

NEW QUESTION # 134
A penetration tester conducted an assessment on a web server. The logs from this session show the following:
http://www.thecompanydomain.com/servicestatus.php?serviceID=892&serviceID=892 ' ; DROP TABLE SERVICES; -- Which of the following attacks is being attempted?

• A. Parameter pollution
• B. Cross-site scripting
• C. Cookie hijacking
• D. Clickjacking
• E. Session hijacking

Answer: A

NEW QUESTION # 135
A company hired a penetration-testing team to review the cyber-physical systems in a manufacturing plant. The team immediately discovered the supervisory systems and PLCs are both connected to the company intranet. Which of the following assumptions, if made by the penetration-testing team, is MOST likely to be valid?

• A. Supervisory systems will detect a malicious injection of code/commands.
• B. Supervisors and controllers are on a separate virtual network by default.
• C. Controllers will not validate the origin of commands.
• D. PLCs will not act upon commands injected over the network.

Answer: C

NEW QUESTION # 136
A penetration tester has been hired to examine a website for flaws. During one of the time windows for testing, a network engineer notices a flood of GET requests to the web server, reducing the website's response time by 80%. The network engineer contacts the penetration tester to determine if these GET requests are part of the test. Which of the following BEST describes the purpose of checking with the penetration tester?

• A. DDoS defense
• B. Situational awareness
• C. Rescheduling
• D. Deconfliction

Answer: D

Explanation:
https://redteam.guide/docs/definitions/

NEW QUESTION # 137
A client wants a security assessment company to perform a penetration test against its hot site. The purpose of the test is to determine the effectiveness of the defenses that protect against disruptions to business continuity. Which of the following is the MOST important action to take before starting this type of assessment?

• A. Ensure the client has signed the SOW.
• B. Determine if the failover environment relies on resources not owned by the client.
• C. Verify the client has granted network access to the hot site.
• D. Establish communication and escalation procedures with the client.

Answer: A

NEW QUESTION # 138
A penetration tester writes the following script:

Which of the following objectives is the tester attempting to achieve?

• A. Set the TTL of ping packets for stealth.
• B. Fill the ARP table of the networked devices.
• C. Determine active hosts on the network.
• D. Scan the system on the most used ports.

Answer: C

NEW QUESTION # 139
Which of the following expressions in Python increase a variable val by one (Choose two.)

• A. +val
• B. val=val++
• C. val=(val+1)
• D. ++val
• E. val+=1
• F. val++

Answer: C,E

Explanation:
Explanation
https://pythonguides.com/increment-and-decrement-operators-in-python/

NEW QUESTION # 140
......

Use Valid New PT0-002 Test Notes & PT0-002 Valid Exam Guide: https://www.pdf4test.com/PT0-002-dump-torrent.html

PT0-002 Actual Questions Answers PDF 100% Cover Real Exam Questions: https://drive.google.com/open?id=11eClYUgc-DdtuQi8ypazfa5eWVcLL0a-