Pearson PT0-001 New Attempt

CompTIA PenTest+ Exam Questions and Answers

Question 5

A client has scheduled a wireless penetration test. Which of the following describes the scoping target

information MOST likely needed before testing can begin?

Options:

The physical location and network ESSIDs to be tested

The number of wireless devices owned by the client

The client's preferred wireless access point vendor

The bands and frequencies used by the client's devices

Question 6

Which of the following should a penetration tester verify prior to testing the login and permissions management for a web application that is protected by a CDN-based WAF?

Options:

If an NDA is signed with the CDN company

If the SSL certificates for the web application are valid

If a list of the applicable WAF rules was obtained

If the IP addresses for the penetration tester are whitelisted on the WAF

Question 7

Which of the following reasons does penetration tester needs to have a customer's point-of -contact information available at all time? (Select THREE).

Options:

To report indicators of compromise

To report findings that cannot be exploited

To report critical findings

To report the latest published exploits

To update payment information

To report a server that becomes unresponsive

To update the statement o( work

Question 8

A penetration tester has identified a directory traversal vulnerability. Which of the following payloads could have

helped the penetration tester identify this vulnerability?

Options:

‘or ‘folder’ like ‘file’; ––

|| is /tmp/

“>

&& dir C:/

../../../../../../../../

New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

CompTIA PenTest+ Exam Questions and Answers

Options:

Answer:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce