Amazon
Avaya
Checkpoint
Cisco®
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL®
Juniper
Microsoft
MuleSoft
Okta
Oracle
Palo Alto Networks
Salesforce
All Vendors
  1. Home
  2. CompTIA
  3. PT0-002

CompTIA PT0-002 Exam (page: 17)
CompTIA PenTest+ Certification
Updated on: 01-Sep-2025

Viewing Page 17 of 105
PT0-002 PDF 520 Questions

Penetration-testing activities have concluded, and the initial findings have been reviewed with the client. Which of the following best describes the NEXT step in the engagement?

  1. Acceptance by the client and sign-off on the final report
  2. Scheduling of follow-up actions and retesting
  3. Attestation of findings and delivery of the report
  4. Review of the lessons during the engagement

Answer(s): C



A penetration tester discovers a web server that is within the scope of the engagement has already been compromised with a backdoor. Which of the following should the penetration tester do NEXT?

  1. Forensically acquire the backdoor Trojan and perform attribution.
  2. Utilize the backdoor in support of the engagement.
  3. Continue the engagement and include the backdoor finding in the final report.
  4. Inform the customer immediately about the backdoor.

Answer(s): D



Which of the following would a company's hunt team be MOST interested in seeing in a final report?

  1. Executive summary
  2. Attack TTPs
  3. Methodology
  4. Scope details

Answer(s): B



A Chief Information Security Officer wants a penetration tester to evaluate whether a recently installed firewall is protecting a subnetwork on which many decades- old legacy systems are connected. The penetration tester decides to run an OS discovery and a full port scan to identify all the systems and any potential vulnerability. Which of the following should the penetration tester consider BEFORE running a scan?

  1. The timing of the scan
  2. The bandwidth limitations
  3. The inventory of assets and versions
  4. The type of scan

Answer(s): C



Which of the following provides an exploitation suite with payload modules that cover the broadest range of target system types?

  1. Nessus
  2. Metasploit
  3. Burp Suite
  4. Ethercap

Answer(s): B



Viewing Page 17 of 105



Share your comments for CompTIA PT0-002 exam with other users:

SAJI 7/20/2023 2:51:00 AM

56 question correct answer a,b
Anonymous


Summer 10/4/2023 9:57:00 PM

looking forward to the real exam
Anonymous