Cisco®
Oracle
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
Microsoft
VMware
Avaya
SAP
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
All Vendors
  2. Home
  3. Exams
  4. CompTIA
  5. PT0-002

Free CompTIA PT0-002 Exam Braindumps (page: 15)

Page 15 of 131
PDF with 520 Questions

A penetration tester is preparing to perform activities for a client that requires minimal disruption to company operations.
Which of the following are considered passive reconnaissance tools? (Choose two.)

  1. Wireshark
  2. Nessus
  3. Retina
  4. Burp Suite
  5. Shodan
  6. Nikto

Answer(s): A,E


Reference:

https://resources.infosecinstitute.com/topic/top-10-network-recon-tools/



A penetration tester wants to scan a target network without being detected by the client's IDS.
Which of the following scans is MOST likely to avoid detection?

  1. nmap -P0 -T0 -sS 192.168.1.10
  2. nmap -sA -sV --host-timeout 60 192.168.1.10
  3. nmap -f --badsum 192.168.1.10
  4. nmap -A -n 192.168.1.10

Answer(s): C


Reference:

https://www.oreilly.com/library/view/network-security-assessment/9780596510305/ch04.html



A penetration tester has been contracted to review wireless security. The tester has deployed a malicious wireless AP that mimics the configuration of the target enterprise WiFi. The penetration tester now wants to try to force nearby wireless stations to connect to the malicious AP.
Which of the following steps should the tester take NEXT?

  1. Send deauthentication frames to the stations.
  2. Perform jamming on all 2.4GHz and 5GHz channels.
  3. Set the malicious AP to broadcast within dynamic frequency selection channels.
  4. Modify the malicious AP configuration to not use a preshared key.

Answer(s): A



SIMULATION
You are a penetration tester running port scans on a server.
INSTRUCTIONS
Part 1: Given the output, construct the command that was used to generate this output from the available options.
Part 2: Once the command is appropriately constructed, use the given output to identify the potential attack vectors that should be investigated further.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Part 1
Part 2

  1. See Explanation section for answer.

Answer(s): A

Explanation:

Part 1 ג€" Enter command: nmap 192.168.2.2 -sV -O
Part 2 ג€" Weak SMB file permissions



Viewing page 15 of 131
Viewing questions 57 - 60 out of 520 questions



Post your Comments and Discuss CompTIA PT0-002 exam prep with other Community members:

PT0-002 Exam Discussions & Posts