PenTest+ PT0-002 Exam Dumps

CompTIA PenTest+ Certification Exam Questions and Answers

Question 65

A client would like to have a penetration test performed that leverages a continuously updated TTPs framework and covers a wide variety of enterprise systems and networks. Which of the following methodologies should be used to BEST meet the client's expectations?

Options:

OWASP Top 10

MITRE ATT&CK framework

NIST Cybersecurity Framework

The Diamond Model of Intrusion Analysis

Question 66

Which of the following provides an exploitation suite with payload modules that cover the broadest range of target system types?

Options:

Nessus

Metasploit

Burp Suite

Ethercap

Question 67

A penetration tester writes the following script:

Which of the following is the tester performing?

Options:

Searching for service vulnerabilities

Trying to recover a lost bind shell

Building a reverse shell listening on specified ports

Scanning a network for specific open ports

Question 68

A penetration tester initiated the transfer of a large data set to verify a proof-of-concept attack as permitted by the ROE. The tester noticed the client's data included PII, which is out of scope, and immediately stopped the transfer. Which of the following MOST likely explains the penetration tester's decision?

Options:

The tester had the situational awareness to stop the transfer.

The tester found evidence of prior compromise within the data set.

The tester completed the assigned part of the assessment workflow.

The tester reached the end of the assessment time frame.

Weekend Sale Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

CompTIA PenTest+ Certification Exam Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation: