Comptia dumpspedia last Attempt Pt0-002 Questions by Lawson q25 vce pdf

Page: 7 / 34

Exam Name:	CompTIA PenTest+ Certification Exam
Exam Code:	PT0-002 Dumps
Vendor:	CompTIA	Certification:	PenTest+
Questions:	464 Q&A's	Shared By:	lawson

Question 28

A Chief Information Security Officer wants a penetration tester to evaluate whether a recently installed firewall is protecting a subnetwork on which many decades- old legacy systems are connected. The penetration tester decides to run an OS discovery and a full port scan to identify all the systems and any potential vulnerability. Which of the following should the penetration tester consider BEFORE running a scan?

Options:

The timing of the scan

The bandwidth limitations

The inventory of assets and versions

The type of scan

Discussion

Question 29

A company provided the following network scope for a penetration test:

169.137.1.0/24

221.10.1.0/24

149.14.1.0/24

A penetration tester discovered a remote command injection on IP address 149.14.1.24 and exploited the system. Later, the tester learned that this particular IP address belongs to a third party. Which of the following stakeholders is responsible for this mistake?

Options:

The company that requested the penetration test

The penetration testing company

The target host's owner

The penetration tester

The subcontractor supporting the test

Discussion

Nylah

I've been looking for good study material for my upcoming certification exam. Need help.

Dolly Oct 3, 2024

Then you should definitely give Cramkey Dumps a try. They have a huge database of questions and answers, making it easy to study and prepare for the exam. And the best part is, you can be sure the information is accurate and relevant.

Syeda

I passed, Thank you Cramkey for your precious Dumps.

Stella Aug 25, 2024

That's great. I think I'll give Cramkey Dumps a try.

Sarah

Yeah, I was so relieved when I saw that the question appeared in the exam were similar to their exam dumps. It made the exam a lot easier and I felt confident going into it.

Aaliyah Aug 27, 2024

Same here. I've heard mixed reviews about using exam dumps, but for us, it definitely paid off.

Norah

Cramkey is highly recommended.

Zayan Oct 17, 2024

Definitely. If you're looking for a reliable and effective study resource, look no further than Cramkey Dumps. They're simply wonderful!

Carson

Yeah, definitely. I would definitely recommend Cramkey Dumps to anyone who is preparing for an exam.

Rufus Aug 20, 2024

Me too. They're a lifesaver!

Question 30

A penetration tester is evaluating a company's network perimeter. The tester has received limited information about defensive controls or countermeasures, and limited internal knowledge of the testing exists. Which of the following should be the FIRST step to plan the reconnaissance activities?

Options:

Launch an external scan of netblocks.

Check WHOIS and netblock records for the company.

Use DNS lookups and dig to determine the external hosts.

Conduct a ping sweep of the company's netblocks.

Discussion

Question 31

ion tester is attempting to get more people from a target company to download and run an executable. Which of the following would be the.. :tive way for the tester to achieve this objective?

Options:

Dropping USB flash drives around the company campus with the file on it

Attaching the file in a phishing SMS that warns users to execute the file or they will be locked out of their accounts

Sending a pretext email from the IT department before sending the download instructions later

Saving the file in a common folder with a name that encourages people to click it