CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. PT0-002

Free PT0-002 Exam Braindumps (page: 38)

Page 38 of 93
PDF with 366 Questions

Which of the following types of information would MOST likely be included in an application security assessment report addressed to developers? (Choose two.)

  1. Use of non-optimized sort functions
  2. Poor input sanitization
  3. Null pointer dereferences
  4. Non-compliance with code style guide
  5. Use of deprecated Javadoc tags
  6. A cydomatic complexity score of 3

Answer(s): B,C



A penetration tester has found indicators that a privileged user's password might be the same on 30 different Linux systems. Which of the following tools can help the tester identify the number of systems on which the password can be used?

  1. Hydra
  2. John the Ripper
  3. Cain and Abel
  4. Medusa

Answer(s): A



A penetration tester recently completed a review of the security of a core network device within a corporate environment. The key findings are as follows:

-The following request was intercepted going to the network device:

GET /login HTTP/1.1
Host: 10.50.100.16
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0)
Gecko/20100101 Firefox/31.0
Accept-Language: en-US,en;q=0.5

Connection: keep-alive
Authorization: Basic WU9VUilOQU1FOnNlY3JldHBhc3N3b3jk
-Network management interfaces are available on the production network.
-An Nmap scan retuned the following:
Port State Service Version
22/tcp open ssh Cisco SSH 1.25 (protocol 2.0
80/tcp open http Cisco IOS http config
|_https-title: Did not follow redirect to https://10.50.100.16
443/tcp open https Cisco IOS https config

Which of the following would be BEST to add to the recommendations section of the final report? (Choose two.)

  1. Enforce enhanced password complexity requirements.
  2. Disable or upgrade SSH daemon.
  3. Disable HTTP/301 redirect configuration.
  4. Create an out-of-band network for management.
  5. Implement a better method for authentication.
  6. Eliminate network management and control interfaces.

Answer(s): A,E



A penetration tester was able to compromise a server and escalate privileges. Which of the following should the tester perform AFTER concluding the activities on the specified target? (Choose two.)

  1. Remove the logs from the server.
  2. Restore the server backup.
  3. Disable the running services.
  4. Remove any tools or scripts that were installed.
  5. Delete any created credentials.
  6. Reboot the target server.

Answer(s): D,E



Page 38 of 93



Post your Comments and Discuss CompTIA PT0-002 exam with other Community members:

Evan Couture commented on December 03, 2024
These questions are exactly what you will see on exam day, but they are good study. The exam may have questions covering similar objectives, but you will still need to study the material and perform hands on labs to be fully prepared. I used certmaster learn, infosec labs, pentest+ for dummies, pluralsight, wordwall user(markutree has some useful matching exercises), quizlet, and of course this resource. Hope this helps.
Anonymous
upvote

Nate commented on October 04, 2024
I worked really hard to pass this exam. It is a very hard exam. These questions are you best buddy. So use them.
UNITED STATES
upvote

Anon commented on August 01, 2024
Good content and useful practice questions. However I run some of the content against ChatGPT and the accuracy was around 90%. I know ChatGPT is not always correct but 90% match is pretty good to me.
UNITED STATES
upvote

Briyan commented on June 18, 2024
Good for passing the exam with a high mark but not ideal for deep learning. This helped me pass the exam and I got the high mark but I learned very little as they are all questions from the real exam.
UNITED STATES
upvote

anon commented on June 05, 2024
Question 20 regarding SSHD nmap scan doesnt add up. why would you do -sA ack scan?? why not a script or something?
UNITED STATES
upvote

SAJI commented on July 20, 2023
56 question correct answer a,b
Anonymous
upvote

Summer commented on October 04, 2023
looking forward to the real exam
Anonymous
upvote

Summer commented on October 04, 2023
looking forward to the real exam
Anonymous
upvote

Wale commented on August 19, 2023
I am new here , just started going through the questions
EUROPEAN UNION
upvote

Doddy commented on July 31, 2023
I have passed PT0-002, thanks!
Anonymous
upvote

SAJI commented on July 20, 2023
56 question correct answer A,B
Anonymous
upvote

Danny commented on August 12, 2021
Well worth... cheap and very helpful.
UNITED STATES
upvote

Frank commented on July 22, 2021
Focus on these questions and your are going to pass. That is what I did. Good luck guys.
SOUTH AFRICA
upvote