Online Access Free CompTIA.PT0-002.v2022-10-11.q87 Practice Test (Page 18)

PT0-002 Exam Question 81

Which of the following provides a matrix of common tactics and techniques used by attackers along with recommended mitigations?

A.NIST SP 800-53

B.OWASP Top 10

C.MITRE ATT&CK framework

D.PTES technical guidelines

PT0-002 Exam Question 82

A company conducted a simulated phishing attack by sending its employees emails that included a link to a site that mimicked the corporate SSO portal. Eighty percent of the employees who received the email clicked the link and provided their corporate credentials on the fake site. Which of the following recommendations would BEST address this situation?

A.Implement multifactor authentication on all corporate applications.

B.Implement an email security gateway to block spam and malware from email communications.

C.Implement a recurring cybersecurity awareness education program for all users.

D.Restrict employees from web navigation by defining a list of unapproved sites in the corporate proxy.

PT0-002 Exam Question 83

A penetration tester has identified several newly released CVEs on a VoIP call manager. The scanning tool the tester used determined the possible presence of the CVEs based off the version number of the service. Which of the following methods would BEST support validation of the possible findings?

A.Test with proof-of-concept code from an exploit database

B.Manually check the version number of the VoIP service against the CVE release

C.Review SIP traffic from an on-path position to look for indicators of compromise

D.Utilize an nmap -sV scan against the service

PT0-002 Exam Question 84

A large client wants a penetration tester to scan for devices within its network that are Internet facing. The client is specifically looking for Cisco devices with no authentication requirements. Which of the following settings in Shodan would meet the client's requirements?

A."cisco-ios" "no-password"

B."cisco-ios" "admin+1234"

C."cisco-ios" "default-passwords"

D."cisco-ios" "last-modified"

PT0-002 Exam Question 85

A penetration tester discovers that a web server within the scope of the engagement has already been compromised with a backdoor. Which of the following should the penetration tester do NEXT?

A.Utilize the backdoor in support of the engagement

B.Forensically acquire the backdoor Trojan and perform attribution

C.Continue the engagement and include the backdoor finding in the final report

D.Inform the customer immediately about the backdoor

Other Version: 1297CompTIA.PT0-002.v2024-10-18.q187; 889CompTIA.PT0-002.v2024-10-14.q167; 1208CompTIA.PT0-002.v2024-08-03.q205; 1320CompTIA.PT0-002.v2023-12-04.q144; 1335CompTIA.PT0-002.v2023-05-17.q120; 1641CompTIA.PT0-002.v2023-03-06.q121; 1037CompTIA.PT0-002.v2023-02-18.q78; 1711CompTIA.PT0-002.v2022-05-11.q49; 2158CompTIA.PT0-002.v2022-04-23.q64; 38CompTIA.Actualtestpdf.PT0-002.v2022-03-19.by.marcus.64q.pdf; 2057CompTIA.PT0-002.v2021-11-22.q40; 77CompTIA.Prep4king.PT0-002.v2021-08-07.by.beulah.35q.pdf

Latest Upload: 142CrowdStrike.CCSE-204.v2026-06-12.q25; 161VMware.2V0-17.25.v2026-06-12.q49; 150Appian.ACA-100.v2026-06-11.q23; 208CompTIA.220-1202.v2026-06-11.q114; 163CheckPoint.156-590.v2026-06-11.q47; 224CompTIA.220-1202.v2026-06-10.q109; 204CertiProf.CEHPC.v2026-06-10.q54; 151Hitachi.HQT-4160.v2026-06-10.q25; 398PMI.PMI-ACP-CN.v2026-06-09.q453; 191Splunk.SPLK-5002.v2026-06-08.q52

PT0-002 Exam Question 81

PT0-002 Exam Question 82

PT0-002 Exam Question 83

PT0-002 Exam Question 84

PT0-002 Exam Question 85

Download PDF File