PT0-003試験無料問題集（241題）「CompTIA PenTest+ 認定」

出題：1

A penetration tester is performing a security review of a web application. Which of the following should the tester leverage to identify the presence of vulnerable open-source libraries?

A. VM

B. IAST

C. DAST

D. SCA

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：2

A client recently hired a penetration testing firm to conduct an assessment of their consumer-facing web application. Several days into the assessment, the client's networking team observes a substantial increase in DNS traffic. Which of the following would most likely explain the increase in DNS traffic?

A. URL spidering

B. DoS attack

C. HTML scraping

D. Covert data exfiltration

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：3

A penetration tester runs a network scan but has some issues accurately enumerating the vulnerabilities due to the following error:
OS identification failed
Which of the following is most likely causing this error?

A. The scan did not reach the target because of a firewall block rule.

B. The scanner database is out of date.

C. The scan is reporting a false positive.

D. The scan cannot gather one or more fingerprints from the target.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：4

A tester is finishing an engagement and needs to ensure that artifacts resulting from the test are safely handled. Which of the following is the best procedure for maintaining client data privacy?

A. Remove configuration changes and any tools deployed to compromised systems.

B. Search through configuration files changed for sensitive credentials and remove them.

C. Shut down C2 and attacker infrastructure on premises and in the cloud.

D. Securely destroy or remove all engagement-related data from testing systems.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：5

A penetration tester is searching for vulnerabilities or misconfigurations on a container environment. Which of the following tools will the tester most likely use to achieve this objective?

A. Nessus

B. Trivy

C. Nikto

D. Nmap

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

A penetration tester launches an attack against company employees. The tester clones the company's intranet login page and sends the link via email to all employees.
Which of the following best describes the objective and tool selected by the tester to perform this activity?

A. Gaining remote access using BeEF

B. Launching a phishing campaign using GoPhish

C. Obtaining the list of email addresses using theHarvester

D. Harvesting credentials using SET

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：7

Which of the following elements of a penetration test report can be used to most effectively prioritize the remediation efforts for all the findings?

A. Risk score

B. Detailed findings list

C. Executive summary

D. Methodology

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：8

A penetration tester writes a Bash script to automate the execution of a ping command on a Class C network:
for var in --MISSING TEXT-- do
ping -c 1 192.168.10.$var
done
Which of the following pieces of code should the penetration tester use in place of -MISSING TEXT-?

A. crunch 1 254 loop

B. echo 1-254

C. seq 1 254

D. fl..254

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

During an assessment, a penetration tester runs the following command:
setspn.exe -Q /
Which of the following attacks is the penetration tester preparing for?

A. Kerberoasting

B. LDAP injection

C. Dictionary

D. Pass-the-hash

正解：A 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：10

You are a security analyst tasked with hardening a web server.
You have been given a list of HTTP payloads that were flagged as malicious.
INSTRUCTIONS
Given the following attack signatures, determine the attack type, and then identify the associated remediation to prevent the attack in the future.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

正解：

Explanation:
1. Reflected XSS - Input sanitization (<> ...)
2. Sql Injection Stacked - Parameterized Queries
3. DOM XSS - Input Sanitization (<> ...)
4. Local File Inclusion - sandbox req
5. Command Injection - sandbox req
6. SQLi union - paramtrized queries
7. SQLi error - paramtrized queries
8. Remote File Inclusion - sandbox
9. Command Injection - input saniti $
10. URL redirect - prevent external calls

出題：11

A tester obtains access to an endpoint subnet and wants to move laterally in the network. Given the following Nmap scan output:
Nmap scan report for some_host
Host is up (0.01s latency).
PORT STATE SERVICE
445/tcp open microsoft-ds
Host script results:
smb2-security-mode: Message signing disabled
Which of the following command and attack methods is the most appropriate for reducing the chances of being detected?

A. msf > use exploit/windows/smb/ms17_010_psexec

B. hydra -L administrator -P /path/to/passwdlist smb://<target>

C. responder -I eth0 -dwv ntlmrelayx.py -smb2support -tf <target>

D. nmap --script smb-brute.nse -p 445 <target>

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：12

While performing a penetration testing exercise, a tester executes the following command:
bash
Copy code
PS c:\tools> c:\hacks\PsExec.exe \\server01.comptia.org -accepteula cmd.exe Which of the following best explains what the tester is trying to do?

A. Enable CMD.exe on the server01 through PsExec.

B. Send the PsExec binary file to the server01 using CMD.exe.

C. Perform a lateral movement attack using PsExec.

D. Test connectivity using PSExec on the server01 using CMD.exe.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：13

A penetration tester is working on an engagement in which a main objective is to collect confidential information that could be used to exfiltrate data and perform a ransomware attack. During the engagement, the tester is able to obtain an internal foothold on the target network. Which of the following is the next task the tester should complete to accomplish the objective?

A. Perform credential dumping.

B. Initiate a social engineering campaign.

C. Compromise an endpoint.

D. Share enumeration.

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

A penetration tester needs to scan a remote infrastructure with Nmap. The tester issues the following command:
nmap 10.10.1.0/24
Which of the following is the number of TCP ports that will be scanned?

A. 256

B. 1,000

C. 65,535

D. 1,024

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：15

During a penetration test, the tester identifies several unused services that are listening on all targeted internal laptops. Which of the following technical controls should the tester recommend to reduce the risk of compromise?

A. Network segmentation

B. Patch management

C. System hardening

D. Multifactor authentication

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：16

A penetration tester observes the following output from an Nmap command while attempting to troubleshoot connectivity to a Linux server:
Starting Nmap 7.91 ( https://nmap.org ) at 2024-01-10 12:00 UTC
Nmap scan report for example.com (192.168.1.10)
Host is up (0.001s latency).
Not shown: 9999 closed ports
PORT STATE SERVICE
21/tcp open ftp
80/tcp open http
135/tcp open msrpc
139/tcp open netbios-ssn
443/tcp open https
2222/tcp open ssh
444/tcp open microsoft-ds
Nmap done: 1 IP address (1 host up) scanned in 0.23 seconds
Which of the following is the most likely reason for the connectivity issue?

A. The SSH service is blocked by a firewall.

B. The SSH service is not active.

C. The SSH service is running on a different port.

D. The SSH service requires certificate authentication.

正解：C 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：17

A penetration tester needs to collect information over the network for further steps in an internal assessment.
Which of the following would most likely accomplish this goal?

A. nc -tulpn 1234 192.168.1.2

B. crackmapexec smb 192.168.1.0/24

C. ntlmrelayx.py -t 192.168.1.0/24 -1 1234

D. responder.py -I eth0 -wP

正解：D 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

PT0-003試験無料問題集「CompTIA PenTest+ 認定」