Online Access Free CompTIA.PT0-002.v2024-08-03.q205 Practice Test (Page 35)

PT0-002 Exam Question 166

A penetration tester finds a PHP script used by a web application in an unprotected internal source code repository. After reviewing the code, the tester identifies the following:

Which of the following combinations of tools would the penetration tester use to exploit this script?

A.Netcat and cURL

B.Burp Suite and DIRB

C.Hydra and crunch

D.Nmap and OWASP ZAP

PT0-002 Exam Question 167

Which of the following would MOST likely be included in the final report of a static application-security test that was written with a team of application developers as the intended audience?

A.Code context for instances of unsafe type-casting operations

B.Executive summary of the penetration-testing methods used

C.Bill of materials including supplies, subcontracts, and costs incurred during assessment

D.Quantitative impact assessments given a successful software compromise

PT0-002 Exam Question 168

A security analyst needs to perform a scan for SMB port 445 over a/16 network. Which of the following commands would be the BEST option when stealth is not a concern and the task is time sensitive?

A.Nmap -s 445 -Pn -T5 172.21.0.0/16

B.Nmap -p 445 -n -T4 -open 172.21.0.0/16

C.Nmap -sV --script=smb* 172.21.0.0/16

D.Nmap -p 445 -max -sT 172. 21.0.0/16

PT0-002 Exam Question 169

A penetration tester gains access to a system and is able to migrate to a user process:

Given the output above, which of the following actions is the penetration tester performing? (Choose two.)

A.Redirecting output from a file to a remote system

B.Building a scheduled task for execution

C.Mapping a share to a remote system

D.Executing a file on the remote system

E.Creating a new process on all domain systems

F.Setting up a reverse shell from a remote system

G.Adding an additional IP address on the compromised system

PT0-002 Exam Question 170

A customer adds a requirement to the scope of a penetration test that states activities can only occur during normal business hours. Which of the following BEST describes why this would be necessary?

A.To ensure someone is available if something goes wrong

B.For testing of the customer's SLA with the ISP

C.To meet PCI DSS testing requirements

D.Because of concerns regarding bandwidth limitations

Other Version: 1314CompTIA.PT0-002.v2024-10-18.q187; 898CompTIA.PT0-002.v2024-10-14.q167; 1333CompTIA.PT0-002.v2023-12-04.q144; 1346CompTIA.PT0-002.v2023-05-17.q120; 1646CompTIA.PT0-002.v2023-03-06.q121; 1044CompTIA.PT0-002.v2023-02-18.q78; 1705CompTIA.PT0-002.v2022-10-11.q87; 1714CompTIA.PT0-002.v2022-05-11.q49; 2164CompTIA.PT0-002.v2022-04-23.q64; 38CompTIA.Actualtestpdf.PT0-002.v2022-03-19.by.marcus.64q.pdf; 2060CompTIA.PT0-002.v2021-11-22.q40; 77CompTIA.Prep4king.PT0-002.v2021-08-07.by.beulah.35q.pdf

Latest Upload: 181CBIC.CIC.v2026-06-15.q123; 125Peoplecert.ITIL-4-Specialist-High-velocity-IT.v2026-06-15.q16; 170HashiCorp.Terraform-Associate-004.v2026-06-15.q126; 130Peoplecert.ITILFNDv5.v2026-06-15.q26; 127Workday.Workday-Pro-HCM-Reporting.v2026-06-15.q28; 127Fortinet.NSE5_SSE_AD-7.6.v2026-06-15.q17; 292PMI.PMI-ACP.v2026-06-15.q523; 167LinuxFoundation.CKAD.v2026-06-15.q118; 158CrowdStrike.CCSE-204.v2026-06-12.q25; 197VMware.2V0-17.25.v2026-06-12.q49

PT0-002 Exam Question 166

PT0-002 Exam Question 167

PT0-002 Exam Question 168

PT0-002 Exam Question 169

PT0-002 Exam Question 170

Download PDF File