• Home
  • Articles
  • 100% Accurate Answers! Aug-2022 PT0-002 Actual Real Exam Questions [Q13-Q38]

100% Accurate Answers! Aug-2022 PT0-002 Actual Real Exam Questions [Q13-Q38]

Share

100% Accurate Answers! Aug-2022 PT0-002 Actual Real Exam Questions

Best Value Available! 2022 Realistic Verified Free PT0-002 Exam Questions


The topics you need to study for the prep of the CompTIA PT0-002 Certification Exam

PT0-002 Dumps cover the following topics of the CompTIA PT0-002 Certification Exam:

  • To produce a written report containing proposed remediation techniques, effectively
  • To communicate results to the management team, and provide practical recommendations
  • To plan and scope a penetration testing engagement
  • To perform vulnerability scanning and penetration testing using appropriate tools and techniques, and then analyze the results
  • To Understand legal and compliance requirements

 

NEW QUESTION 13
A penetration tester has completed an analysis of the various software products produced by the company under assessment. The tester found that over the past several years the company has been including vulnerable third-party modules in multiple products, even though the quality of the organic code being developed is very good. Which of the following recommendations should the penetration tester include in the report?

  • A. Add a dependency checker into the tool chain.
  • B. Perform fuzz testing of compiled binaries.
  • C. Perform routine static and dynamic analysis of committed code.
  • D. Validate API security settings before deployment.

Answer: B

 

NEW QUESTION 14
Which of the following expressions in Python increase a variable val by one (Choose two.)

  • A. val=(val+1)
  • B. +val
  • C. val+=1
  • D. val++
  • E. ++val
  • F. val=val++

Answer: C,E

 

NEW QUESTION 15
A penetration tester conducts an Nmap scan against a target and receives the following results:

Which of the following should the tester use to redirect the scanning tools using TCP port 1080 on the target?

  • A. ProxyChains
  • B. Nessus
  • C. Empire
  • D. OWASPZAP

Answer: A

 

NEW QUESTION 16
Which of the following would MOST likely be included in the final report of a static application-security test that was written with a team of application developers as the intended audience?

  • A. Code context for instances of unsafe type-casting operations
  • B. Executive summary of the penetration-testing methods used
  • C. Quantitative impact assessments given a successful software compromise
  • D. Bill of materials including supplies, subcontracts, and costs incurred during assessment

Answer: C

 

NEW QUESTION 17
During a penetration-testing engagement, a consultant performs reconnaissance of a client to identify potential targets for a phishing campaign. Which of the following would allow the consultant to retrieve email addresses for technical and billing contacts quickly, without triggering any of the client's cybersecurity tools? (Choose two.)

  • A. Utilizing DNS lookup tools
  • B. Phishing company employees
  • C. Crawling the client's website
  • D. Scraping social media sites
  • E. Using the WHOIS lookup tool
  • F. Conducting wardriving near the client facility

Answer: C,E

 

NEW QUESTION 18
You are a penetration tester reviewing a client's website through a web browser.
INSTRUCTIONS
Review all components of the website through the browser to determine if vulnerabilities are present.
Remediate ONLY the highest vulnerability from either the certificate, source, or cookies.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.






Answer:

Explanation:

 

NEW QUESTION 19
Performing a penetration test against an environment with SCADA devices brings additional safety risk because the:

  • A. devices are obsolete and are no longer available for replacement.
  • B. devices may cause physical world effects.
  • C. devices produce more heat and consume more power.
  • D. protocols are more difficult to understand.

Answer: B

Explanation:
"A significant issue identified by Wiberg is that using active network scanners, such as Nmap, presents a weakness when attempting port recognition or service detection on SCADA devices. Wiberg states that active tools such as Nmap can use unusual TCP segment data to try and find available ports. Furthermore, they can open a massive amount of connections with a specific SCADA device but then fail to close them gracefully." And since SCADA and ICS devices are designed and implemented with little attention having been paid to the operational security of these devices and their ability to handle errors or unexpected events, the presence idle open connections may result into errors that cannot be handled by the devices.

 

NEW QUESTION 20
A penetration tester who is doing a company-requested assessment would like to send traffic to another system using double tagging. Which of the following techniques would BEST accomplish this goal?

  • A. Tag nesting
  • B. Meta tagging
  • C. RFID tagging
  • D. RFID cloning

Answer: A

Explanation:
since vlan hopping requires 2 vlans to be nested in a single packet. Double tagging occurs when an attacker adds and modifies tags on an Ethernet frame to allow the sending of packets through any VLAN. This attack takes advantage of how many switches process tags. Most switches will only remove the outer tag and forward the frame to all native VLAN ports. With that said, this exploit is only successful if the attacker belongs to the native VLAN of the trunk link. https://cybersecurity.att.com/blogs/security-essentials/vlan-hopping-and-mitigation

 

NEW QUESTION 21
A penetration tester was conducting a penetration test and discovered the network traffic was no longer reaching the client's IP address. The tester later discovered the SOC had used sinkholing on the penetration tester's IP address. Which of the following BEST describes what happened?

  • A. The penetration tester had incorrect contact information
  • B. The penetration tester was testing the wrong assets
  • C. The client was not ready for the assessment to start
  • D. The planning process failed to ensure all teams were notified

Answer: D

 

NEW QUESTION 22
A penetration tester who is performing a physical assessment of a company's security practices notices the company does not have any shredders inside the office building. Which of the following techniques would be BEST to use to gain confidential information?

  • A. Shoulder surfing
  • B. Badge cloning
  • C. Dumpster diving
  • D. Tailgating

Answer: C

 

NEW QUESTION 23
A penetration tester writes the following script:

Which of the following objectives is the tester attempting to achieve?

  • A. Fill the ARP table of the networked devices.
  • B. Set the TTL of ping packets for stealth.
  • C. Scan the system on the most used ports.
  • D. Determine active hosts on the network.

Answer: D

 

NEW QUESTION 24
A penetration tester is starting an assessment but only has publicly available information about the target company. The client is aware of this exercise and is preparing for the test.
Which of the following describes the scope of the assessment?

  • A. Physical environment testing
  • B. Known environment testing
  • C. Partially known environment testing
  • D. Unknown environment testing

Answer: D

 

NEW QUESTION 25
A company that developers embedded software for the automobile industry has hired a penetration-testing team to evaluate the security of its products prior to delivery. The penetration-testing team has stated its intent to subcontract to a reverse-engineering team capable of analyzing binaries to develop proof-of-concept exploits. The software company has requested additional background investigations on the reverse- engineering team prior to approval of the subcontract. Which of the following concerns would BEST support the software company's request?

  • A. The reverse-engineering team will be given access to source code for analysis.
  • B. The reverse-engineering team may have a history of selling exploits to third parties.
  • C. The reverse-engineering team may use closed-source or other non-public information feeds for its analysis.
  • D. The reverse-engineering team may not instill safety protocols sufficient for the automobile industry.

Answer: B

 

NEW QUESTION 26
Running a vulnerability scanner on a hybrid network segment that includes general IT servers and industrial control systems:

  • A. will create a denial-of-service condition on the IP networks.
  • B. may cause unintended failures in control systems.
  • C. will reveal vulnerabilities in the Modbus protocol.
  • D. may reduce the true positive rate of findings.

Answer: B

 

NEW QUESTION 27
A penetration tester runs the following command on a system:
find / -user root -perm -4000 -print 2>/dev/null
Which of the following is the tester trying to accomplish?

  • A. Find files that were created during exploitation and move them to /dev/null
  • B. Set the SGID on all files in the / directory
  • C. Find the /root directory on the system
  • D. Find files with the SUID bit set

Answer: D

 

NEW QUESTION 28
A company is concerned that its cloud service provider is not adequately protecting the VMs housing its software development. The VMs are housed in a datacenter with other companies sharing physical resources.
Which of the following attack types is MOST concerning to the company?

  • A. Cybersquatting
  • B. Side channel
  • C. Session riding
  • D. Data flooding

Answer: C

 

NEW QUESTION 29
A company becomes concerned when the security alarms are triggered during a penetration test. Which of the following should the company do NEXT?

  • A. Halt the penetration test.
  • B. Contact law enforcement.
  • C. Deconflict with the penetration tester.
  • D. Assume the alert is from the penetration test.

Answer: B

 

NEW QUESTION 30
Which of the following is the MOST common vulnerability associated with IoT devices that are directly connected to the Internet?

  • A. Unsupported operating systems
  • B. The existence of default passwords
  • C. Inability to network
  • D. Susceptibility to DDoS attacks

Answer: A

 

NEW QUESTION 31
A client wants a security assessment company to perform a penetration test against its hot site. The purpose of the test is to determine the effectiveness of the defenses that protect against disruptions to business continuity. Which of the following is the MOST important action to take before starting this type of assessment?

  • A. Ensure the client has signed the SOW.
  • B. Determine if the failover environment relies on resources not owned by the client.
  • C. Establish communication and escalation procedures with the client.
  • D. Verify the client has granted network access to the hot site.

Answer: A

 

NEW QUESTION 32
A compliance-based penetration test is primarily concerned with:

  • A. determining the efficacy of a specific set of security standards.
  • B. obtaining specific information from the protected network.
  • C. obtaining Pll from the protected network.
  • D. bypassing protection on edge devices.

Answer: A

 

NEW QUESTION 33
Which of the following commands will allow a penetration tester to permit a shell script to be executed by the file owner?

  • A. chmod u+x script.sh
  • B. chmod o+e script.sh
  • C. chmod u+e script.sh
  • D. chmod o+x script.sh

Answer: A

 

NEW QUESTION 34
A penetration tester discovered a vulnerability that provides the ability to upload to a path via directory traversal. Some of the files that were discovered through this vulnerability are:

Which of the following is the BEST method to help an attacker gain internal access to the affected machine?

  • A. Download .pl files and look for usernames and passwords
  • B. Download the smb.conf file and look at configurations
  • C. Edit the discovered file with one line of code for remote callback
  • D. Edit the smb.conf file and upload it to the server

Answer: D

 

NEW QUESTION 35
A penetration tester has obtained root access to a Linux-based file server and would like to maintain persistence after reboot. Which of the following techniques would BEST support this objective?

  • A. Run the nc -e /bin/sh <...> command.
  • B. Obtain /etc/shadow and brute force the root password.
  • C. Move laterally to create a user account on LDAP
  • D. Create a one-shot systemd service to establish a reverse shell.

Answer: D

Explanation:
https://hosakacorp.net/p/systemd-user.html

 

NEW QUESTION 36
A penetration tester runs the unshadow command on a machine. Which of the following tools will the tester most likely use NEXT?

  • A. Mimikatz
  • B. Hydra
  • C. Cain and Abel
  • D. John the Ripper

Answer: D

 

NEW QUESTION 37
Given the following output:
User-agent:*
Disallow: /author/
Disallow: /xmlrpc.php
Disallow: /wp-admin
Disallow: /page/
During which of the following activities was this output MOST likely obtained?

  • A. Website cloning
  • B. URL enumeration
  • C. Website scraping
  • D. Domain enumeration

Answer: C

 

NEW QUESTION 38
......

Actual Questions Answers Pass With Real PT0-002 Exam Dumps: https://actualanswers.testsdumps.com/PT0-002_real-exam-dumps.html

Related Articles

more
CompTIA PT0-002 Certification Practice Exam

TestsDumps is an experienced and credible website offering you the latest test questions and professional study materials which help you pass the IT test exam with higher hit-rate.

Latest Test Dump

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 TestsDumps NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy