Microsoft
Amazon
CompTIA
Salesforce
Cisco®
SAP
PMI
ISC
ISACA
VMware
HP
Palo Alto Networks
EC-Council
LPI
Google
Fortinet
All Vendors
  2. Home
  3. Exam List
  4. CompTIA
  5. PT0-002

CompTIA PenTest+ Certification
PT0-002 Exam

Which of the following commands will allow a penetration tester to permit a shell script to be executed by the file owner?

  1. chmod u+x script.sh
  2. chmod u+e script.sh
  3. chmod o+e script.sh
  4. chmod o+x script.sh

Answer(s): A


Reference:

https://newbedev.com/chmod-u-x-versus-chmod-x



A penetration tester gains access to a system and establishes persistence, and then run the following commands:



Which of the following actions is the tester MOST likely performing?

  1. Redirecting Bash history to /dev/null
  2. Making a copy of the user's Bash history to further enumeration
  3. Covering tracks by clearing the Bash history
  4. Making decoy files on the system to confuse incident responders

Answer(s): C


Reference:

https://null-byte.wonderhowto.com/how-to/clear-logs-bash-history-hacked-linux-systems-cover- your-tracks-remain-undetected-0244768/



A compliance-based penetration test is primarily concerned with:

  1. obtaining PII from the protected network.
  2. bypassing protection on edge devices.
  3. determining the efficacy of a specific set of security standards.
  4. obtaining specific information from the protected network.

Answer(s): C



A penetration tester is explaining the MITRE ATT&CK framework to a company's chief legal counsel.
Which of the following would the tester MOST likely describe as a benefit of the framework?

  1. Understanding the tactics of a security intrusion can help disrupt them.
  2. Scripts that are part of the framework can be imported directly into SIEM tools.
  3. The methodology can be used to estimate the cost of an incident better.
  4. The framework is static and ensures stability of a security program over time.

Answer(s): A


Reference:

https://attack.mitre.org/




Nirmala Ch
very useful
- INDIA
Upvote


Fadil
It is very good
- Anonymous
Upvote


MD. MAZBAHUL KARIM
This is a superb site for practice.
- Anonymous
Upvote


MD. MAZBAHUL KARIM
This is a superb site for quality exam, I really appreciate this site.
- Anonymous
Upvote


PJT
Need for preparing to Certification exam
- Anonymous
Upvote


Mohan Krishna, arevrapu
I need it please sent asap in 2 days
- INDIA
Upvote


Dan
Ans to 355 is wrong, pls have a certified to work on the answers again pls
- Anonymous
Upvote


dnllin
366 Ans Hypervisor-level software patching is wrong, should be B - Customers are responsible for managing their data (including encryption options) Why there are so many wrong answers?
- UNITED STATES
Upvote


dnllin
Q342: Which AWS service or feature for technical assistance is available to a user who has the AWS Basic Support plan? - Ans AWS senior support engineers is wrong. Should be D. Basic Support offers support for account and billing questions and service quota increases. The other plans offer a number of technical support cases with pay-by-the-month pricing and no long-term contracts.
- UNITED STATES
Upvote


Dnllin
Which AWS services or features enable users to connect on-premises networks to a VPC? (Choose two.) Answer(s): A,D. D (VPC peering) is wrong. C is correct - AWS Direct Connect. Using AWS Direct Connect, you can establish private connectivity between AWS and your datacenter, office,
- UNITED STATES
Upvote

Read more ...