Comptia certkiller pt0-002 Exam Questions Tutorials by Ayub q127 vce pdf

Page: 14 / 32

Exam Name:	CompTIA PenTest+ Certification Exam
Exam Code:	PT0-002 Dumps
Vendor:	CompTIA	Certification:	PenTest+
Questions:	445 Q&A's	Shared By:	ayub

Question 56

A private investigation firm is requesting a penetration test to determine the likelihood that attackers can gain access to mobile devices and then exfiltrate data from those devices. Which of the following is a social-engineering method that, if successful, would MOST likely enable both objectives?

Options:

Send an SMS with a spoofed service number including a link to download a malicious application.

Exploit a vulnerability in the MDM and create a new account and device profile.

Perform vishing on the IT help desk to gather a list of approved device IMEIs for masquerading.

Infest a website that is often used by employees with malware targeted toward x86 architectures.

Discussion

Question 57

A penetration tester is testing a new API for the company's existing services and is preparing the following script:

Questions 57

Which of the following would the test discover?

Options:

Default web configurations

Open web ports on a host

Supported HTTP methods

Listening web servers in a domain

Discussion

Question 58

During a penetration test, a tester is in close proximity to a corporate mobile device belonging to a network administrator that is broadcasting Bluetooth frames.

Which of the following is an example of a Bluesnarfing attack that the penetration tester can perform?

Options:

Sniff and then crack the WPS PIN on an associated WiFi device.

Dump the user address book on the device.

Break a connection between two Bluetooth devices.

Transmit text messages to the device.

Discussion

Pippa

I was so happy to see that almost all the questions on the exam were exactly what I found in their Dumps.

Anastasia Sep 21, 2024

You are right…It was amazing! The Cramkey Dumps were so comprehensive and well-organized, it made studying for the exam a breeze.

Inaaya

Are these Dumps worth buying?

Fraser Oct 9, 2024

Yes, of course, they are necessary to pass the exam. They give you an insight into the types of questions that could come up and help you prepare effectively.

Wyatt

Passed my exam… Thank you so much for your excellent Exam Dumps.

Arjun Sep 18, 2024

That sounds really useful. I'll definitely check it out.

Yusra

I passed my exam. Cramkey Dumps provides detailed explanations for each question and answer, so you can understand the concepts better.

Alisha Aug 29, 2024

I recently used their dumps for the certification exam I took and I have to say, I was really impressed.

Question 59

A penetration tester examines a web-based shopping catalog and discovers the following URL when viewing a product in the catalog:

http://company.com/catalog.asp?productid=22

The penetration tester alters the URL in the browser to the following and notices a delay when the page refreshes: