Sure Pass Exam PT0-002 PDF

CompTIA PenTest+ Certification Exam Questions and Answers

Question 101

Which of the following should a penetration tester do NEXT after identifying that an application being tested has already been compromised with malware?

Options:

Analyze the malware to see what it does.

Collect the proper evidence and then remove the malware.

Do a root-cause analysis to find out how the malware got in.

Remove the malware immediately.

Stop the assessment and inform the emergency contact.

Question 102

An assessor wants to use Nmap to help map out a stateful firewall rule set. Which of the following scans will the assessor MOST likely run?

Options:

nmap -sA 192.168.0.1/24

nmap -sS 192.168.0.1/24

nmap -oG 192.168.0.1/24

nmap 192.168.0.1/24

Question 103

A client wants a security assessment company to perform a penetration test against its hot site. The purpose of the test is to determine the effectiveness of the defenses that protect against disruptions to business continuity. Which of the following is the MOST important action to take before starting this type of assessment?

Options:

Ensure the client has signed the SOW.

Verify the client has granted network access to the hot site.

Determine if the failover environment relies on resources not owned by the client.

Establish communication and escalation procedures with the client.

Question 104

A penetration tester who is conducting a vulnerability assessment discovers that ICMP is disabled on a network segment. Which of the following could be used for a denial-of-service attack on the network segment?

Options:

Smurf

Ping flood

Fraggle

Ping of death

Month End Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

CompTIA PenTest+ Certification Exam Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce