Online Access Free CompTIA.PT0-002.v2023-12-04.q144 Practice Test (Page 14)

PT0-002 Exam Question 61

A penetration tester is testing a new API for the company's existing services and is preparing the following script:

Which of the following would the test discover?

A.Default web configurations

B.Open web ports on a host

C.Supported HTTP methods

D.Listening web servers in a domain

PT0-002 Exam Question 62

Which of the following would MOST likely be included in the final report of a static application-security test that was written with a team of application developers as the intended audience?

A.Executive summary of the penetration-testing methods used

B.Bill of materials including supplies, subcontracts, and costs incurred during assessment

C.Quantitative impact assessments given a successful software compromise

D.Code context for instances of unsafe type-casting operations

PT0-002 Exam Question 63

A penetration tester attempted a DNS poisoning attack. After the attempt, no traffic was seen from the target machine. Which of the following MOST likely caused the attack to fail?

A.The injection was too slow.

B.The DNS information was incorrect.

C.The DNS cache was not refreshed.

D.The client did not receive a trusted response.

PT0-002 Exam Question 64

A penetration tester is testing a new version of a mobile application in a sandbox environment. To intercept and decrypt the traffic between the application and the external API, the tester has created a private root CA and issued a certificate from it. Even though the tester installed the root CA into the trusted stone of the smartphone used for the tests, the application shows an error indicating a certificate mismatch and does not connect to the server. Which of the following is the MOST likely reason for the error?

A.The API server is using SSL instead of TLS

B.TCP port 443 is not open on the firewall

C.The application has the API certificate pinned.

D.The tester is using an outdated version of the application

PT0-002 Exam Question 65

A penetration tester wants to find hidden information in documents available on the web at a particular domain. Which of the following should the penetration tester use?

A.Netcraft

B.CentralOps

C.Responder

D.FOCA

Other Version: 1298CompTIA.PT0-002.v2024-10-18.q187; 890CompTIA.PT0-002.v2024-10-14.q167; 1209CompTIA.PT0-002.v2024-08-03.q205; 1336CompTIA.PT0-002.v2023-05-17.q120; 1641CompTIA.PT0-002.v2023-03-06.q121; 1037CompTIA.PT0-002.v2023-02-18.q78; 1700CompTIA.PT0-002.v2022-10-11.q87; 1711CompTIA.PT0-002.v2022-05-11.q49; 2158CompTIA.PT0-002.v2022-04-23.q64; 38CompTIA.Actualtestpdf.PT0-002.v2022-03-19.by.marcus.64q.pdf; 2057CompTIA.PT0-002.v2021-11-22.q40; 77CompTIA.Prep4king.PT0-002.v2021-08-07.by.beulah.35q.pdf

Latest Upload: 143CrowdStrike.CCSE-204.v2026-06-12.q25; 161VMware.2V0-17.25.v2026-06-12.q49; 150Appian.ACA-100.v2026-06-11.q23; 208CompTIA.220-1202.v2026-06-11.q114; 163CheckPoint.156-590.v2026-06-11.q47; 224CompTIA.220-1202.v2026-06-10.q109; 204CertiProf.CEHPC.v2026-06-10.q54; 152Hitachi.HQT-4160.v2026-06-10.q25; 402PMI.PMI-ACP-CN.v2026-06-09.q453; 192Splunk.SPLK-5002.v2026-06-08.q52

PT0-002 Exam Question 61

PT0-002 Exam Question 62

PT0-002 Exam Question 63

PT0-002 Exam Question 64

PT0-002 Exam Question 65

Download PDF File