Nest 0 Cart
Nest Account
Popular Exams
All Categories...
Nest
Nest 0
Contact
Log In / Sign Up
Copyright 2024 © store. All rights reserved.
Home CompTIA PT0-001

CompTIA PT0-001 Exam Practice Questions (P. 5)

  • Full Access (196 questions)
  • Six months of Premium Access
  • Access to one million comments
  • Seamless ChatGPT Integration
  • Ability to download PDF files
  • Anki Flashcard files for revision
  • No Captcha & No AdSense
  • Advanced Exam Configuration
Get Contributor Access
Question #21
A penetration tester is able to move laterally throughout a domain with minimal roadblocks after compromising a single workstation. Which of the following mitigation strategies would be BEST to recommend in the report? (Select THREE).
  1. A
    Randomize local administrator credentials for each machine.
  2. B
    Disable remote logons for local administrators.
  3. C
    Require multifactor authentication for all logins.
  4. D
    Increase minimum password complexity requirements.
  5. E
    Apply additional network access control.
  6. F
    Enable full-disk encryption on every workstation.
  7. G
    Segment each host into its own VLAN.

Correct Answer:
CDE

Question #22
A security consultant is trying to attack a device with a previously identified user account.

Which of the following types of attacks is being executed?
  1. A
    Credential dump attack
  2. B
    DLL injection attack
  3. C
    Reverse shell attack
  4. D
    Pass the hash attack

Correct Answer:
D

Question #23
A malicious user wants to perform an MITM attack on a computer. The computer network configuration is given below:

IP: 192.168.1.20 -

NETMASK: 255.255.255.0 -

DEFAULT GATEWAY: 192.168.1.254 -

DHCP: 192.168.1.253 -
DNS: 192.168.10.10, 192.168.20.10
Which of the following commands should the malicious user execute to perform the MITM attack?
  1. A
    arpspoof -c both -r -t 192.168.1.1 192.168.1.20
  2. B
    arpspoof -t 192.168.1.20 192.168.1.254
  3. C
    arpspoof -c both -t 192.168.1.20 192.168.1.253
  4. D
    arpspoof -r -t 192.168.1.253 192.168.1.20

Correct Answer:
B
Reference:
https://www.hackers-arise.com/single-post/2017/07/25/Man-the-Middle-MiTM-Attack-with-ARPspoofing

Question #24
A client has requested an external network penetration test for compliance purposes. During discussion between the client and the penetration tester, the client expresses unwillingness to add the penetration tester's source IP addresses to the client's IPS whitelist for the duration of the test. Which of the following is the
BEST argument as to why the penetration tester's source IP addresses should be whitelisted?
  1. A
    Whitelisting prevents a possible inadvertent DoS attack against the IPS and supporting log-monitoring systems.
  2. B
    Penetration testing of third-party IPS systems often requires additional documentation and authorizations; potentially delaying the time-sensitive test.
  3. C
    IPS whitelisting rules require frequent updates to stay current, constantly developing vulnerabilities and newly discovered weaknesses.
  4. D
    Testing should focus on the discovery of possible security issues across all in-scope systems, not on determining the relative effectiveness of active defenses such as an IPS.

Correct Answer:
D

Question #25
An energy company contracted a security firm to perform a penetration test of a power plant, which employs ICS to manage power generation and cooling. Which of the following is a consideration unique to such an environment that must be made by the firm when preparing for the assessment?
  1. A
    Selection of the appropriate set of security testing tools
  2. B
    Current and load ratings of the ICS components
  3. C
    Potential operational and safety hazards
  4. D
    Electrical certification of hardware used in the test

Correct Answer:
A

Previous Questions Next Questions

All Pages