PT0-002 Exam Questions and Answers | Exam-Dumps.net (Page: 12)

QUESTION: 56

SIMULATION
You are a penetration tester running port scans on a server.
INSTRUCTIONS
Part 1: Given the output, construct the command that was used to generate this output from the available options.
Part 2: Once the command is appropriately constructed, use the given output to identify the potential attack vectors that should be investigated further.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Part 1
Part 2

See Explanation section for answer.

Answer(s): A

Explanation:

Part 1 ג€" Enter command: nmap 192.168.2.2 -sV -O
Part 2 ג€" Weak SMB file permissions

Reveal Solution Next Question

QUESTION: 57

Which of the following protocols or technologies would in-transit confidentially protection for emailing the final security assessment report?

S/MIME
FTPS
DNSSEC
AS2

Answer(s): A

Reveal Solution Next Question

QUESTION: 58

A penetration tester was able to gather MD5 hashes from a server and crack the hashes easily with rainbow tables.
Which of the following should be included as a recommendation in the remediation report?

Stronger algorithmic requirements
Access controls on the server
Encryption on the user passwords
A patch management program

Answer(s): A

Reveal Solution Next Question

QUESTION: 59

A penetration tester found the following valid URL while doing a manual assessment of a web application: http://www.example.com/product.php?id=123987.
Which of the following automated tools would be best to use NEXT to try to identify a vulnerability in this URL?