PT0-002 Exam Results

CompTIA PenTest+ Certification Exam Questions and Answers

Question 25

User credentials were captured from a database during an assessment and cracked using rainbow tables. Based on the ease of compromise, which of the following algorithms was MOST likely used to store the passwords in the database?

Options:

MD5

bcrypt

SHA-1

PBKDF2

Question 26

A penetration tester was able to gain access successfully to a Windows workstation on a mobile client’s laptop. Which of the following can be used to ensure the tester is able to maintain access to the system?

Options:

schtasks /create /sc /ONSTART /tr C:\Temp\WindowsUpdate.exe

wmic startup get caption,command

crontab –l; echo “@reboot sleep 200 && ncat –lvp 4242 –e /bin/bash”) | crontab 2>/dev/null

sudo useradd –ou 0 –g 0 user

Question 27

A penetration tester has been hired to configure and conduct authenticated scans of all the servers on a software company’s network. Which of the following accounts should the tester use to return the MOST results?

Options:

Root user

Local administrator

Service

Network administrator

Question 28

Which of the following BEST describe the OWASP Top 10? (Choose two.)

Options:

The most critical risks of web applications

A list of all the risks of web applications

The risks defined in order of importance

A web-application security standard

A risk-governance and compliance framework

A checklist of Apache vulnerabilities

Weekend Sale Special - Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: top65certs

CompTIA PenTest+ Certification Exam Questions and Answers

Options:

Answer:

Explanation:

Options:

Answer:

Options:

Answer:

Options:

Answer:

Explanation: