Tag - PT0-001 exam

A company planned for and secured the budget to hire a consultant to perform a web application penetration test. Upon discovered vulnerabilities, the company asked the consultant to perform the following tasks: • Code review • Updates to firewall settingA . Scope creepB . Post-mortem reviewC . Risk acceptanceD ....

HOTSPOT Instructions: Given the following attack signatures, determine the attack type, and then identify the associated remediation to prevent the attack in the future. If at any time you would like to bring back the initial state of the simulation, please click the Reset All button. You are a security...

An internal network penetration test is conducted against a network that is protected by an unknown NAC system In an effort to bypass the NAC restrictions the penetration tester spoofs the MAC address and hostname of an authorized system. Which of the following devices if impersonated would be MOST likely...

CORRECT TEXT You are a penetration tester running port scans on a server. INSTRUCTIONS Part1: Given the output, construct the command that was used to generate this output from the available options. Part2: Once the command is appropriately constructed, use the given output to identify the potential attack vectors that...

A consultant is identifying versions of Windows operating systems on a network. Which of the following Nmap commands should the consultant run?A . nmap -T4 -v -sU -iL /tmp/list.txt -Pn ―script smb-system-infoB . nmap -T4 -v -iL /tmp/list .txt -Pn ―script smb-os-disccveryC . nmap -T4 -v -6 -iL /tmp/liat.txt -Pn...

A penetration tester is testing a banking application and uncovers a vulnerability. The tester is logged in as a non-privileged user who should have no access to any data. Given the data below from the web interception proxy Request POST /Bank/Tax/RTSdocuments/ HTTP 1.1 Host: test.com Accept: text/html; application/xhtml+xml Referrer: https://www.test.com/Bank/Tax/RTSdocuments/...

Which of the following reasons does penetration tester needs to have a customer's point-of -contact information available at all time? (Select THREE).A . To report indicators of compromiseB . To report findings that cannot be exploitedC . To report critical findingsD . To report the latest published exploitsE . To...

A security assessor is attempting to craft specialized XML files to test the security of the parsing functions during ingest into a Windows application. Before beginning to test the application, which of the following should the assessor request from the organization?A . Sample SOAP messagesB . The REST API documentationC...

A penetration tester notices that the X-Frame-Optjons header on a web application is not set . Which of the following would a malicious actor do to exploit this configuration setting?A . Use path modification to escape the application's framework.B . Create a frame that overlays the application.C . Inject a...

A web server is running PHP, and a penetration tester is using LFI to execute commands by passing parameters through the URL. This is possible because server logs were poisoned to execute the PHP system ( ) function . Which of the following would retrieve the contents of the passwd...