Online Access Free CompTIA.PT0-001.v2021-12-21.q123 Practice Test (Page 20)

PT0-001 Exam Question 91

During an engagement an unsecure direct object reference vulnerability was discovered that allows the extraction of highly sensitive PII. The tester is required to extract and then exfil the information from a web application with identifiers 1 through 1000 inclusive. When running the following script, an error is encountered:

Which of the following lines of code is causing the problem?

A.url += i

B.req = requests.get(url)

C.url = "https://www.comptia.org?id="

D.if req.status ==200:

PT0-001 Exam Question 92

A company's corporate policies state that employees are able to scan any global network as long as it is done within working hours. Government laws prohibit unauthorized scanning. Which of the following should an employee abide by?

A.The employee must obtain written approval from the company's Chief Information Security Officer (ClSO) prior to scanning

B.Industry standards receding scanning should be followed

C.Company policies must be followed in this situation

D.Laws supersede corporate policies

PT0-001 Exam Question 93

A system security engineer is preparing to conduct a security assessment of some new applications. The applications were provided to the engineer as a set that contains only JAR files. Which of the following would be the MOST detailed method to gather information on the inner working of these applications?

A.Review the details and extensions of the certificate used to digitally sign the code and the application

B.Use a static code analyzer on the JAR filet to look for code Quality deficiencies

C.Decompile the applications to approximate source code and then conduct a manual review

D.Launch the applications and use dynamic software analysis tools, including fuzz testing

PT0-001 Exam Question 94

A penetration tester is performing a validation scan after an organization remediated a vulnerability on port
443 The penetration tester observes the following output:

Which of the following has MOST likely occurred?

A.The scan results were a false positive.

B.The organization moved services to port 8443

C.The IPS is blocking traffic to port 443

D.A mismatched firewall rule is blocking 443.

PT0-001 Exam Question 95

A penetration tester discovers Heartbleed vulnerabilities in a target network Which of the following impacts would be a result of exploiting this vulnerability?

A.Public certificate contents can be used lo decrypt traffic

B.Man-in-the-middle attacks can be used to eavesdrop cookie contents.

C.The attacker can steal session IDs to impersonate other users

D.Code execution can be achieved on the affected systems

Other Version: 2155CompTIA.PT0-001.v2022-09-05.q129; 77CompTIA.Ipassleader.PT0-001.v2022-03-10.by.scott.177q.pdf; 2999CompTIA.PT0-001.v2022-02-01.q177; 93CompTIA.Vce4plus.PT0-001.v2021-08-06.by.harvey.229q.pdf

Latest Upload: 140CrowdStrike.CCSE-204.v2026-06-12.q25; 160VMware.2V0-17.25.v2026-06-12.q49; 147Appian.ACA-100.v2026-06-11.q23; 203CompTIA.220-1202.v2026-06-11.q114; 162CheckPoint.156-590.v2026-06-11.q47; 221CompTIA.220-1202.v2026-06-10.q109; 194CertiProf.CEHPC.v2026-06-10.q54; 151Hitachi.HQT-4160.v2026-06-10.q25; 387PMI.PMI-ACP-CN.v2026-06-09.q453; 190Splunk.SPLK-5002.v2026-06-08.q52

PT0-001 Exam Question 91

PT0-001 Exam Question 92

PT0-001 Exam Question 93

PT0-001 Exam Question 94

PT0-001 Exam Question 95

Download PDF File