Free PT0-002 Exam Braindumps

A penetration tester is reviewing the following DNS reconnaissance results for comptia.org from dig: comptia.org. 3569 IN MX comptia.org-mail.protection.outlook.com. comptia.org. 3569 IN A 3.219.13.186.
comptia.org.
3569 IN NS ns1.comptia.org. comptia.org. 3569 IN SOA haven. administrator.comptia.org. comptia.org. 3569 IN MX new.mx0.comptia.org. comptia.org. 3569 IN MX new.mx1.comptia.org.
Which of the following potential issues can the penetration tester identify based on this output?

1. A. At least one of the records is out of scope.
2. B. There is a duplicate MX record.
3. C. The NS record is not within the appropriate domain.
4. D. The SOA records outside the comptia.org domain.

Correct Answer: A

Penetration-testing activities have concluded, and the initial findings have been reviewed with the client. Which of the following best describes the NEXT step in the engagement?

1. A. Acceptance by the client and sign-off on the final report
2. B. Scheduling of follow-up actions and retesting
3. C. Attestation of findings and delivery of the report
4. D. Review of the lessons learned during the engagement

Correct Answer: C

A penetration tester recently completed a review of the security of a core network device within a corporate environment. The key findings are as follows:
• The following request was intercepted going to the network device: GET /login HTTP/1.1
Host: 10.50.100.16
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Firefox/31.0 Accept-Language: en-US,en;q=0.5
Connection: keep-alive
Authorization: Basic WU9VUilOQU1FOnNlY3JldHBhc3N3b3jk
• Network management interfaces are available on the production network.
• An Nmap scan returned the following:

Which of the following would be BEST to add to the recommendations section of the final report? (Choose two.)

1. A. Enforce enhanced password complexity requirements.
2. B. Disable or upgrade SSH daemon.
3. C. Disable HTTP/301 redirect configuration.
4. D. Create an out-of-band network for management.
5. E. Implement a better method for authentication.
6. F. Eliminate network management and control interfaces.

Correct Answer: CD

Which of the following should a penetration tester consider FIRST when engaging in a penetration test in a cloud environment?

1. A. Whether the cloud service provider allows the penetration tester to test the environment
2. B. Whether the specific cloud services are being used by the application
3. C. The geographical location where the cloud services are running
4. D. Whether the country where the cloud service is based has any impeding laws

Correct Answer: A

During an internal penetration test against a company, a penetration tester was able to navigate to another part of the network and locate a folder containing customer information such as addresses, phone numbers, and credit card numbers. To be PCI compliant, which of the following should the company have implemented to BEST protect this data?

1. A. Vulnerability scanning
2. B. Network segmentation
3. C. System hardening
4. D. Intrusion detection

Correct Answer: B