CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. PT0-002

Free PT0-002 Exam Braindumps (page: 11)

Page 11 of 93
PDF with 366 Questions

A penetration tester has been given an assignment to attack a series of targets in the 192.168.1.0/24 range, triggering as few alarms and countermeasures as possible.
Which of the following Nmap scan syntaxes would BEST accomplish this objective?

  1. nmap -sT -vvv -O 192.168.1.2/24 -PO
  2. nmap -sV 192.168.1.2/24 -PO
  3. nmap -sA -v -O 192.168.1.2/24
  4. nmap -sS -O 192.168.1.2/24 -T1

Answer(s): D


Reference:

https://nmap.org/book/man-port-scanning-techniques.html



A penetration tester has gained access to a network device that has a previously unknown IP range on an interface. Further research determines this is an always-on VPN tunnel to a third-party supplier.
Which of the following is the BEST action for the penetration tester to take?

  1. Utilize the tunnel as a means of pivoting to other internal devices.
  2. Disregard the IP range, as it is out of scope.
  3. Stop the assessment and inform the emergency contact.
  4. Scan the IP range for additional systems to exploit.

Answer(s): C



A penetration tester recently performed a social-engineering attack in which the tester found an employee of the target company at a local coffee shop and over time built a relationship with the employee. On the employee's birthday, the tester gave the employee an external hard drive as a gift.
Which of the following social-engineering attacks was the tester utilizing?

  1. Phishing
  2. Tailgating
  3. Baiting
  4. Shoulder surfing

Answer(s): C


Reference:

https://phoenixnap.com/blog/what-is-social-engineering-types-of-threats



A security company has been contracted to perform a scoped insider-threat assessment to try to gain access to the human resources server that houses PII and salary data. The penetration testers have been given an internal network starting position.
Which of the following actions, if performed, would be ethical within the scope of the assessment?

  1. Exploiting a configuration weakness in the SQL database
  2. Intercepting outbound TLS traffic
  3. Gaining access to hosts by injecting malware into the enterprise-wide update server
  4. Leveraging a vulnerability on the internal CA to issue fraudulent client certificates
  5. Establishing and maintaining persistence on the domain controller

Answer(s): A



Page 11 of 93



Post your Comments and Discuss CompTIA PT0-002 exam with other Community members:

Evan Couture commented on December 03, 2024
These questions are exactly what you will see on exam day, but they are good study. The exam may have questions covering similar objectives, but you will still need to study the material and perform hands on labs to be fully prepared. I used certmaster learn, infosec labs, pentest+ for dummies, pluralsight, wordwall user(markutree has some useful matching exercises), quizlet, and of course this resource. Hope this helps.
Anonymous
upvote

Nate commented on October 04, 2024
I worked really hard to pass this exam. It is a very hard exam. These questions are you best buddy. So use them.
UNITED STATES
upvote

Anon commented on August 01, 2024
Good content and useful practice questions. However I run some of the content against ChatGPT and the accuracy was around 90%. I know ChatGPT is not always correct but 90% match is pretty good to me.
UNITED STATES
upvote

Briyan commented on June 18, 2024
Good for passing the exam with a high mark but not ideal for deep learning. This helped me pass the exam and I got the high mark but I learned very little as they are all questions from the real exam.
UNITED STATES
upvote

anon commented on June 05, 2024
Question 20 regarding SSHD nmap scan doesnt add up. why would you do -sA ack scan?? why not a script or something?
UNITED STATES
upvote

SAJI commented on July 20, 2023
56 question correct answer a,b
Anonymous
upvote

Summer commented on October 04, 2023
looking forward to the real exam
Anonymous
upvote

Summer commented on October 04, 2023
looking forward to the real exam
Anonymous
upvote

Wale commented on August 19, 2023
I am new here , just started going through the questions
EUROPEAN UNION
upvote

Doddy commented on July 31, 2023
I have passed PT0-002, thanks!
Anonymous
upvote

SAJI commented on July 20, 2023
56 question correct answer A,B
Anonymous
upvote

Danny commented on August 12, 2021
Well worth... cheap and very helpful.
UNITED STATES
upvote

Frank commented on July 22, 2021
Focus on these questions and your are going to pass. That is what I did. Good luck guys.
SOUTH AFRICA
upvote