Online PT0-002 Practice TestMore CompTIA Products >

Free CompTIA PT0-002 Exam Dumps Questions

CompTIA PT0-002: CompTIA PenTest+ Certification Exam

- Get instant access to PT0-002 practice exam questions

- Get ready to pass the CompTIA PenTest+ Certification Exam exam right now using our CompTIA PT0-002 exam package, which includes CompTIA PT0-002 practice test plus an CompTIA PT0-002 Exam Simulator.

- The best online PT0-002 exam study material and preparation tool is here.

4.5

(1755 ratings)

Question 1

A penetration tester runs the following command on a system:
find / -user root –perm -4000 –print 2>/dev/null
Which of the following is the tester trying to accomplish?

A. Set the SGID on all files in the / directory

B. Find the /root directory on the system

C. Find files with the SUID bit set

D. Find files that were created during exploitation and move them to /dev/null

Correct Answer:C

Question 2

A penetration tester has been given eight business hours to gain access to a client’s financial system. Which of the following techniques will have the highest likelihood of success?

A. Attempting to tailgate an employee going into the client's workplace

B. Dropping a malicious USB key with the company’s logo in the parking lot

C. Using a brute-force attack against the external perimeter to gain a foothold

D. Performing spear phishing against employees by posing as senior management

Correct Answer:C

Question 3

A penetration tester is looking for a vulnerability that enables attackers to open doors via a specialized TCP service that is used for a physical access control system. The service exists on more than 100 different hosts, so the tester would like to automate the assessment. Identification requires the penetration tester to:
PT0-002 dumps exhibit Have a full TCP connection
Send a “hello” payload
Walt for a response
Send a string of characters longer than 16 bytes
Which of the following approaches would BEST support the objective?

A. Run nmap –Pn –sV –script vuln <IP address>.

B. Employ an OpenVAS simple scan against the TCP port of the host.

C. Create a script in the Lua language and use it with NSE.

D. Perform a credentialed scan with Nessus.

Correct Answer:C

Question 4

A company hired a penetration tester to do a social-engineering test against its employees. Although the tester did not find any employees’ phone numbers on the company’s website, the tester has learned the complete phone catalog was published there a few months ago.
In which of the following places should the penetration tester look FIRST for the employees’ numbers?

A. Web archive

B. GitHub

C. File metadata

D. Underground forums

Correct Answer:A

Question 5

An assessment has been completed, and all reports and evidence have been turned over to the client. Which of the following should be done NEXT to ensure the confidentiality of the client’s information?

A. Follow the established data retention and destruction process

B. Report any findings to regulatory oversight groups

C. Publish the findings after the client reviews the report

D. Encrypt and store any client information for future analysis

Correct Answer:D

Question 6

A company’s Chief Executive Officer has created a secondary home office and is concerned that the WiFi service being used is vulnerable to an attack. A penetration tester is hired to test the security of the WiFi’s router.
Which of the following is MOST vulnerable to a brute-force attack?

A. WPS

B. WPA2-EAP

C. WPA-TKIP

D. WPA2-PSK

Correct Answer:A

START PT0-002 EXAM