Comptia help2pass passed Exam Today Pt0-002 by Quinn q127 vce pdf

Page: 32 / 34

Exam Name:	CompTIA PenTest+ Certification Exam
Exam Code:	PT0-002 Dumps
Vendor:	CompTIA	Certification:	PenTest+
Questions:	464 Q&A's	Shared By:	quinn

Question 128

A security analyst is conducting an unknown environment test from 192.168.3.3. The analyst wants to limit observation of the penetration tester's activities and lower the probability of detection by intrusion protection and detection systems. Which of the following Nmap commands should the analyst use to achieve this objective?

Options:

nmap -F 192.168.5.5

nmap -datalength 2 192.168.5.5

nmap -D 10.5.2.2 192.168.5.5

nmap -scanflags SYNFIN 192.168.5.5

Discussion

Question 129

Which of the following tools would help a penetration tester locate a file that was uploaded to a content management system?

Options:

DirBuster

Open VAS

Scout Suite

CeWL

Discussion

Question 130

During a client engagement, a penetration tester runs the following Nmap command and obtains the following output:

nmap -sV -- script ssl-enum-ciphers -p 443 remotehost

| TLS_ECDHE_ECDSA_WITH_RC4_128_SHA

| TLS_ECDHE_RSA_WITH_RC4_128_SHA

TLS_RSA_WITH_RC4_128_SHA (rsa 2048)

TLS_RSA_WITH_RC4_128_MD5 (rsa 2048)

Which of the following should the penetration tester include in the report?

Options:

Old, insecure ciphers are in use.

The 3DES algorithm should be deprecated.

2,048-bit symmetric keys are incompatible with MD5.

This server should be upgraded to TLS 1.2.

Discussion

Billy

It was like deja vu! I was confident going into the exam because I had already seen those questions before.

Vincent Aug 15, 2024

Definitely. And the best part is, I passed! I feel like all that hard work and preparation paid off. Cramkey is the best resource for all students!!!

Nylah

I've been looking for good study material for my upcoming certification exam. Need help.

Dolly Oct 3, 2024

Then you should definitely give Cramkey Dumps a try. They have a huge database of questions and answers, making it easy to study and prepare for the exam. And the best part is, you can be sure the information is accurate and relevant.

Inaya

Passed the exam. questions are valid. The customer support is top-notch. They were quick to respond to any questions I had and provided me with all the information I needed.

Cillian Oct 20, 2024

That's a big plus. I've used other dump providers in the past and the customer support was often lacking.

Annabel

I recently used them for my exam and I passed it with excellent score. I am impressed.

Amirah Oct 28, 2024

I passed too. The questions I saw in the actual exam were exactly the same as the ones in the Cramkey Dumps. I was able to answer the questions confidently because I had already seen and studied them.

Question 131

During a security assessment, a penetration tester decides to write the following Python script: import requests

x= ['OPTIONS', 'TRACE', 'TEST'l

for y in x;

z - requests.request(y, 'http://server.net ')

print(y, z.status_code, z.reason)

Which of the following is the penetration tester trying to accomplish? (Select two).

Options:

Web server denial of service

HTTP methods availability

'Web application firewall detection

'Web server fingerprinting