Online Access Free CompTIA.PT0-002.v2023-12-04.q144 Practice Test (Page 2)

PT0-002 Exam Question 1

A company hired a penetration-testing team to review the cyber-physical systems in a manufacturing plant.
The team immediately discovered the supervisory systems and PLCs are both connected to the company intranet. Which of the following assumptions, if made by the penetration-testing team, is MOST likely to be valid?

A.PLCs will not act upon commands injected over the network.

B.Supervisors and controllers are on a separate virtual network by default.

C.Controllers will not validate the origin of commands.

D.Supervisory systems will detect a malicious injection of code/commands.

PT0-002 Exam Question 2

During an internal penetration test against a company, a penetration tester was able to navigate to another part of the network and locate a folder containing customer information such as addresses, phone numbers, and credit card numbers. To be PCI compliant, which of the following should the company have implemented to BEST protect this data?

A.Vulnerability scanning

B.Network segmentation

C.System hardening

D.Intrusion detection

PT0-002 Exam Question 3

A penetration tester discovered a vulnerability that provides the ability to upload to a path via directory traversal. Some of the files that were discovered through this vulnerability are:

Which of the following is the BEST method to help an attacker gain internal access to the affected machine?

A.Download .pl files and look for usernames and passwords

B.Download the smb.conf file and look at configurations

C.Edit the smb.conf file and upload it to the server

D.Edit the discovered file with one line of code for remote callback

PT0-002 Exam Question 4

During an assessment, a penetration tester found a suspicious script that could indicate a prior compromise.
While reading the script, the penetration tester noticed the following lines of code:

Which of the following was the script author trying to do?

A.Spawn a local shell.

B.Disable NIC.

C.List processes.

D.Change the MAC address

PT0-002 Exam Question 5

A
penetration tester found the following valid URL while doing a manual assessment of a web application:
http://www.example.com/product.php?id=123987.
Which of the following automated tools would be best to use NEXT to try to identify a vulnerability in this URL?

A.SQLmap

B.Nikto

C.Nessus

D.DirBuster

Other Version: 760CompTIA.PT0-002.v2024-10-18.q187; 457CompTIA.PT0-002.v2024-10-14.q167; 772CompTIA.PT0-002.v2024-08-03.q205; 988CompTIA.PT0-002.v2023-05-17.q120; 1309CompTIA.PT0-002.v2023-03-06.q121; 869CompTIA.PT0-002.v2023-02-18.q78; 1461CompTIA.PT0-002.v2022-10-11.q87; 1558CompTIA.PT0-002.v2022-05-11.q49; 1943CompTIA.PT0-002.v2022-04-23.q64; 38CompTIA.Actualtestpdf.PT0-002.v2022-03-19.by.marcus.64q.pdf; 1884CompTIA.PT0-002.v2021-11-22.q40; 77CompTIA.Prep4king.PT0-002.v2021-08-07.by.beulah.35q.pdf

Latest Upload: 107Salesforce.ADM-201.v2025-09-06.q260; 103Oracle.1Z0-1055-23.v2025-09-06.q48; 104Cisco.010-151.v2025-09-06.q130; 130PMI.PMI-PBA.v2025-09-05.q160; 138Salesforce.Advanced-Cross-Channel.v2025-09-04.q41; 133EC-COUNCIL.312-40.v2025-09-04.q87; 147Oracle.1Z1-591.v2025-09-03.q129; 128Oracle.1z0-1065-25.v2025-09-03.q26; 162Cisco.350-701.v2025-09-03.q218; 125Oracle.1Z0-1195-25.v2025-09-03.q20

PT0-002 Exam Question 1

PT0-002 Exam Question 2

PT0-002 Exam Question 3

PT0-002 Exam Question 4

PT0-002 Exam Question 5

Download PDF File