Winter Sale Special Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: v4s65

  1. Home
  2. CompTIA
  3. PenTest+
  4. PT0-001 - CompTIA PenTest+ Exam
Note! Following PT0-001 Exam is Retired now. Please select the alternative replacement for your Exam Certification. The new exam code is PT0-002

PT0-001 Exam Dumps - CompTIA PenTest+ Exam

Go to page:
Question # 33

The results of a basic compliance scan show a subset of assets on a network. This data differs from what is shown on the network architecture diagram, which was supplied at the beginning of the test. Which of the following are the MOST likely causes for this difference? (Select TWO)

A.

Storage access

B.

Limited network access

C.

Misconfigured DHCP server

D.

Incorrect credentials

E.

Network access controls

Full Access
Question # 34

Which of the following can be used to perform online password attacks against RDP?

A.

Hashcat

B.

John the Rippef

C.

Aircrack-ng

D.

Ncrack

Full Access
Question # 35

A company planned for and secured the budget to hire a consultant to perform a web application penetration test. Upon discovered vulnerabilities, the company asked the consultant to perform the following tasks:

• Code review

• Updates to firewall setting

A.

Scope creep

B.

Post-mortem review

C.

Risk acceptance

D.

Threat prevention

Full Access
Question # 36

Given the following Python script:

Which of the following actions will it perform?

A.

ARP spoofing

B.

Port scanner

C.

Reverse shell

D.

Banner grabbing

Full Access
Question # 37

A senior employee received a suspicious email from another executive requesting an urgent wire transfer.

Which of the following types of attacks is likely occurring?

A.

Spear phishing

B.

Business email compromise

C.

Vishing

D.

Whaling

Full Access
Question # 38

Defining exactly what is to be tested and the results to be generated from the test will help prevent?

A.

testing scope creep

B.

scheduling conflicts

C.

impact on production

D.

disclosure of information.

Full Access
Question # 39

While engaging clients for a penetration test from highly regulated industries, which of the following is usually the MOST important to the clients from a business perspective?

A.

Letter of engagement and attestation of findings

B.

NDA and MSA

C.

SOW and final report

D.

Risk summary and executive summary

Full Access
Question # 40

A penetration tester is required to perform OSINT on staff at a target company after completing the infrastructure aspect. Which of the following would be the BEST step for the penetration tester to take?

A.

Obtain staff information by calling the company and using social engineering techniques.

B.

Visit the client and use impersonation to obtain information from staff.

C.

Send spoofed emails to staff to see if staff will respond with sensitive information.

D.

Search the Internet for information on staff such as social networking sites.

Full Access
Go to page:

Hot Exams

ADM-201 Dumps
Platform-App-Builder Dumps
AZ-500 Dumps
350-701 Dumps
SY0-601 Dumps
NCSE-Core Dumps
PDP9 Dumps
DP-203 Dumps
AZ-700 Dumps
NSE7_EFW-7.0 Dumps
Integration-Architect Dumps
CS0-003 Dumps