PT0-001 exam

After gaining initial low-privilege access to a Linux system, a penetration tester identifies an interesting binary in a user’s folder titled “changepass” -sr Cxr -x 1 root root 6443 Oct 18 2017 /home/user/changepass Using “strings” to print ASCII printable characters from changepass, the tester notes the following: $ strings changepass...

When negotiating a penetration testing contract with a prospective client, which of the following disclaimers should be included in order to mitigate liability in case of a future breach of the client’s systems?A . The proposed mitigations and remediations in the final report do not include a cost-benefit analysis.B ....

A security team is switching firewall vendors. The director of security wants to scope a penetration test to satisfy requirements to perform the test after major architectural changes . Which of the following is the BEST way to approach the project?A . Design a penetration test approach, focusing on publicly...

A tester has captured a NetNTLMv2 hash using Responder. Which of the following commands will allow the tester to crack the hash using a mask attack?A . hashcat -m 5600 -r rulea/beat64.rule hash.txt wordliat.txtB . hashcax -m 500 hash.txtC . hashc&t -m 5600 -a 3 haah.txt ?a?a?a?a?a?a?a?aD . hashcat -m...

Which of the following documents BEST describes the manner in which a security assessment will be conducted?A . BIAB . SOWC . SLAD . MSAView AnswerAnswer: A

Joe, an attacker, intends to transfer funds discreetly from a victim’s account to his own . Which of the following URLs can he use to accomplish this attack?A . https://testbank.com/BankingApp/ACB . aspx?CustID=435345&accountType=F&action-ACHTransfer&senderID=654846&notify=False&creditaccount=’OR 1=1 AND select username from testbank.custinfo where username like ‘Joe’&amount=200C . https://testbank.com/BankingApp/ACD . aspx?CustID=435345&accountType=F&action-ACHTransfer&senderID=654846&notify=False&creditaccount=’OR 1=1 AND select username...

DRAG DROP Instructions: Analyze the code segments to determine which sections are needed to complete a port scanning script. Drag the appropriate elements into the correct locations to complete the script. If at any time you would like to bring back the initial state of the simulation, please click the...

A penetration tester has successfully deployed an evil twin and is starting to see some victim traffic. The next step the penetration tester wants to take is to capture all the victim web traffic unencrypted . Which of the following would BEST meet this goal?A . Perform an HTTP downgrade...

The results of a basic compliance scan show a subset of assets on a network. This data differs from what is shown on the network architecture diagram, which was supplied at the beginning of the test . Which of the following are the MOST likely causes for this difference? (Select...

A penetration tester ran the following Nmap scan on a computer: nmap -aV 192.168.1.5 The organization said it had disabled Telnet from its environment. However, the results of the Nmap scan show port 22 as closed and port 23 as open to SSH . Which of the following is the...