CompTIA PenTest+ (PT0-002) Free Practice Exam Questions

377 real CompTIA PenTest+ (PT0-002) exam questions with answers and AI explanations. CompTIA certification prep — page 23 of 38.

  1. Question 266: While conducting a penetration test of a web application, the penetration tester enters the following URI: http://test.comptia.com/../../../../etc/shadow Which…
  2. Question 268: Which of the following is a ROE component that provides a penetration tester with guidance on who and how to contact the necessary individuals in the event of…
  3. Question 270: Given the following user-supplied data: www.comptia.com/info. php?id=1 AND 1=1 Which of the following attack techniques is the penetration tester likely implem…
  4. Question 271: A penetration tester is taking screen captures of hashes obtained from a domain controller. Which of the following BEST explains why the penetration tester sho…
  5. Question 275: A penetration tester discovered a code repository and noticed passwords were hashed before they were stored in the database with the following code: salt = 'sa…
  6. Question 276: A penetration tester is testing a company's public APIs. In researching the API URLs, the penetration tester discovers that the URLs resolve to a cloud-hosted…
  7. Question 277: A company recruited a penetration tester to brute force an SSH password on a server. The tester would like to use THC Hydra to perform the attack and remember…
  8. Question 278: An organization’s Chief Information Security Officer debates the validity of a critical finding from a penetration assessment that was completed six months ago…
  9. Question 279: A penetration tester keeps a running diary of the day-to-day engagement activity. Which of the following is the most likely explanation for keeping the diary?
  10. Question 280: A penetration tester is conducting an engagement for a company and has identified a vulnerable web application. During the reconnaissance phase the tester disc…