PenTest+ PT0-003 CompTIA Study Notes

CompTIA PenTest+ Exam Questions and Answers

Question 29

SIMULATION

Using the output, identify potential attack vectors that should be further investigated.

Options:

Question 30

A penetration tester writes the following script to enumerate a /24 network:

1 #!/bin/bash

2 for i in {1..254}

3 ping -c1 192.168.1.$i

4 done

The tester executes the script, but it fails with the following error:

-bash: syntax error near unexpected token 'ping'

Which of the following should the tester do to fix the error?

Options:

Add do after line 2

Replace {1..254} with $(seq 1 254)

Replace bash with zsh

Replace $i with ${i}

Question 31

During a penetration test, a tester attempts to pivot from one Windows 10 system to another Windows system. The penetration tester thinks a local firewall is blocking connections. Which of the following command-line utilities built into Windows is most likely to disable the firewall?

Options:

certutil.exe

bitsadmin.exe

msconfig.exe

netsh.exe

Question 32

With one day left to complete the testing phase of an engagement, a penetration tester obtains the following results from an Nmap scan:

Not shown: 1670 closed ports

PORT STATE SERVICE VERSION

80/tcp open http Apache httpd 2.2.3 (CentOS)

3306/tcp open mysql MySQL (unauthorized)

8888/tcp open http lighttpd 1.4.32

Which of the following tools should the tester use to quickly identify a potential attack path?

Options:

msfvenom

SearchSploit

sqlmap

BeEF

Spring Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

CompTIA PenTest+ Exam Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

Options:

Answer:

Explanation:

CompTIA

Fortinet

Microsoft

Salesforce