PT0-002試験無料問題集（460題）「CompTIA PenTest+ Certification 認定」

出題：1

A penetration tester was able to gain access to a plaintext file on a user workstation. Upon opening the file, the tester notices some strings of randomly generated text. The tester is able to use these strings to move laterally throughout the network by accessing the fileshare on a web application. Which of the following should the organization do to remediate the issue?

A. Rotate keys.

B. Sanitize user input.

C. Utilize certificate management.

D. Implement password management solution.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

A penetration tester was able to compromise a web server and move laterally into a Linux web server. The tester now wants to determine the identity of the last user who signed in to the web server. Which of the following log files will show this activity?

A. /var/log/lastlog

B. /var/log/last_user

C. /var/log/user_log

D. /var/log/messages

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

A company that developers embedded software for the automobile industry has hired a penetration-testing team to evaluate the security of its products prior to delivery. The penetration-testing team has stated its intent to subcontract to a reverse-engineering team capable of analyzing binaries to develop proof-of-concept exploits. The software company has requested additional background investigations on the reverse- engineering team prior to approval of the subcontract. Which of the following concerns would BEST support the software company's request?

A. The reverse-engineering team may not instill safety protocols sufficient for the automobile industry.

B. The reverse-engineering team may use closed-source or other non-public information feeds for its analysis.

C. The reverse-engineering team will be given access to source code for analysis.

D. The reverse-engineering team may have a history of selling exploits to third parties.

正解：D 解答を投票する

出題：4

Which of the following is the MOST effective person to validate results from a penetration test?

A. Client

B. Third party

C. Team leader

D. Chief Information Officer

正解：C 解答を投票する

出題：5

A security engineer identified a new server on the network and wants to scan the host to determine if it is running an approved version of Linux and a patched version of Apache. Which of the following commands will accomplish this task?

A. nmap -O -v -p80 192.168.1.20

B. nmap -f -sV -p80 192.168.1.20

C. nmap -A -T4 -p80 192.168.1.20

D. nmap -sS -sL -p80 192.168.1.20

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

A penetration tester has obtained root access to a Linux-based file server and would like to maintain persistence after reboot. Which of the following techniques would BEST support this objective?

A. Run the nc -e /bin/sh <...> command.

B. Create a one-shot system service to establish a reverse shell.

C. Obtain /etc/shadow and brute force the root password.

D. Move laterally to create a user account on LDAP

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

A company hired a penetration tester to do a social-engineering test against its employees. Although the tester did not find any employees' phone numbers on the company's website, the tester has learned the complete phone catalog was published there a few months ago.
In which of the following places should the penetration tester look FIRST for the employees' numbers?

A. Underground forums

B. GitHub

C. File metadata

D. Web archive

正解：D 解答を投票する

出題：8

A penetration tester is testing a new API for the company's existing services and is preparing the following script:

Which of the following would the test discover?

A. Supported HTTP methods

B. Listening web servers in a domain

C. Default web configurations

D. Open web ports on a host

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

Which of the following best explains why communication is a vital phase of a penetration test?

A. To ensure the likelihood of future assessments

B. To discuss situational awareness

C. To build rapport with the emergency contact

D. To explain the data destruction process

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

Running a vulnerability scanner on a hybrid network segment that includes general IT servers and industrial control systems:

A. may reduce the true positive rate of findings.

B. will reveal vulnerabilities in the Modbus protocol.

C. will create a denial-of-service condition on the IP networks.

D. may cause unintended failures in control systems.

正解：D 解答を投票する

出題：11

During enumeration, a red team discovered that an external web server was frequented by employees. After compromising the server, which of the following attacks would best support ------------company systems?

A. A watering-hole attack

B. A cross-site scripting attack

C. Aside-channel attack

D. A command injection attack

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：12

A company recently moved its software development architecture from VMs to containers. The company has asked a penetration tester to determine if the new containers are configured correctly against a DDoS attack. Which of the following should a tester perform first?

A. Perform a vulnerability check against the hypervisor.

B. .Scan the containers for open ports.

C. Test the strength of the encryption settings.

D. Determine if security tokens are easily available.

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：13

A penetration tester is assessing a wireless network. Although monitoring the correct channel and SSID, the tester is unable to capture a handshake between the clients and the AP. Which of the following attacks is the MOST effective to allow the penetration tester to capture a handshake?

A. Key reinstallation

B. Deauthentication

C. Evil twin

D. Replay

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

A penetration tester is testing a new version of a mobile application in a sandbox environment. To intercept and decrypt the traffic between the application and the external API, the tester has created a private root CA and issued a certificate from it. Even though the tester installed the root CA into the trusted stone of the smartphone used for the tests, the application shows an error indicating a certificate mismatch and does not connect to the server. Which of the following is the
MOST likely reason for the error?

A. TCP port 443 is not open on the firewall

B. The API server is using SSL instead of TLS

C. The application has the API certificate pinned.

D. The tester is using an outdated version of the application

正解：C 解答を投票する

出題：15

A penetration tester exploited a vulnerability on a server and remotely ran a payload to gain a shell. However, a connection was not established, and no errors were shown on the payload execution. The penetration tester suspected that a network device, like an IPS or next-generation firewall, was dropping the connection. Which of the following payloads are MOST likely to establish a shell successfully?

A. windows/x64/meterpreter/reverse_https

B. windows/x64/powershell_reverse_tcp

C. windows/x64/meterpreter/reverse_http

D. windows/x64/meterpreter/reverse_tcp

E. windows/x64/shell_reverse_tcp

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

PT0-002試験無料問題集「CompTIA PenTest+ Certification 認定」