Most Recent CompTIA PT0-002 Exam Dumps

Prepare for the CompTIA PenTest+ Certification Exam exam with our extensive collection of questions and answers. These practice Q&A are updated according to the latest syllabus, providing you with the tools needed to review and test your knowledge.

QA4Exam focus on the latest syllabus and exam objectives, our practice Q&A are designed to help you identify key topics and solidify your understanding. By focusing on the core curriculum, These Questions & Answers helps you cover all the essential topics, ensuring you're well-prepared for every section of the exam. Each question comes with a detailed explanation, offering valuable insights and helping you to learn from your mistakes. Whether you're looking to assess your progress or dive deeper into complex topics, our updated Q&A will provide the support you need to confidently approach the CompTIA PT0-002 exam and achieve success.

The questions for PT0-002 were last updated on Mar 27, 2025.

Viewing page 1 out of 93 pages.
Viewing questions 1-5 out of 464 questions

Get All 464 Questions & Answers

Question No. 1

The attacking machine is on the same LAN segment as the target host during an internal penetration test. Which of the following commands will BEST enable the attacker to conduct host delivery and write the discovery to files without returning results of the attack machine?

Anmap snn exclude 10.1.1.15 10.1.1.0/24 oA target_txt

Bnmap iR10oX out.xml | grep Nmap | cut d 'f5 > live-hosts.txt

Cnmap PnsV OiL target.txt A target_text_Service

Dnmap sSPn n iL target.txt A target_txtl

Show Answer

Correct Answer: A

According to the Official CompTIA PenTest+ Self-Paced Study Guide1, the correct answer is A. nmap -sn -n -exclude 10.1.1.15 10.1.1.0/24 -oA target_txt.

This command will perform a ping scan (-sn) without reverse DNS resolution (-n) on the IP range 10.1.1.0/24, excluding the attack machine's IP address (10.1.1.15) from the scan (-exclude). It will also output the results in three formats (normal, grepable and XML) with a base name of target_txt (-oA).

Question No. 2

Which of the following would a company's hunt team be MOST interested in seeing in a final report?

AExecutive summary

BAttack TTPs

CMethodology

DScope details

Show Answer

Correct Answer: B

Question No. 3

A company that requires minimal disruption to its daily activities needs a penetration tester to perform information gathering around the company's web presence. Which of the following would the tester find MOST helpful in the initial information-gathering steps? (Choose two.)

AIP addresses and subdomains

BZone transfers

CDNS forward and reverse lookups

DInternet search engines

EExternally facing open ports

FShodan results

Show Answer

Correct Answer: A, D

A) IP addresses and subdomains. This is correct. IP addresses and subdomains are useful information for a penetration tester to identify the scope and range of the company's web presence. IP addresses can reveal the location, network, and service provider of the company's web servers, while subdomains can indicate the different functions and features of the company's website. A penetration tester can use tools like whois, Netcraft, or DNS lookups to find IP addresses and subdomains associated with the company's domain name.

D) Internet search engines. This is correct. Internet search engines are powerful tools for a penetration tester to perform passive information gathering around the company's web presence. Search engines can provide a wealth of information, such as the company's profile, history, news, social media accounts, reviews, products, services, customers, partners, competitors, and more. A penetration tester can use advanced search operators and keywords to narrow down the results and find relevant information. For example, using thesite:operator can limit the results to a specific domain or subdomain, while using theintitle:operator can filter the results by the title of the web pages.

Question No. 4

A penetration tester analyzed a web-application log file and discovered an input that was sent to the company's web application. The input contains a string that says "WAITFOR." Which of the following attacks is being attempted?

ASQL injection

BHTML injection

CRemote command injection

DDLL injection

Show Answer

Correct Answer: A

WAITFOR can be used in a type of SQL injection attack known astime delay SQL injectionorblind SQL injection34. This attack works on the basis that true or false queries can be answered by the amount of time a request takes to complete. For example, an attacker can inject a WAITFOR command with a delay argument into an input field of a web application that uses SQL Server as its database. If the query returns true, then the web application will pause for the specified period of time before responding; if the query returns false, then the web application will respond immediately.By observing the response time, the attacker can infer information about the database structure and data1.

Based on this information, one possible answer to your question isA. SQL injection, because it is an attack that exploits a vulnerability in a web application that allows an attacker to execute arbitrary SQL commands on the database server.

Question No. 5

Given the following table:

Which of the following data structures would most likely be used to store known-good configurations of firewall rules in a Python script?

ALists

BTrees

CDictionaries

DTuples

Show Answer

Correct Answer: C

Unlock All Questions for CompTIA PT0-002 Exam

Full Exam Access, Actual Exam Questions, Validated Answers, Anytime Anywhere, No Download Limits, No Practice Limits

Get All 464 Questions & Answers