A security professional wants to test an IoT device by sending an invalid packet to a proprietary service listening on TCP port 3011. Which of the following would allow the security professional to easily and programmatically manipulate the TCP header length and checksum using arbitrary numbers and to observe how the proprietary service responds?
Answer(s): A
https://www.mn.uio.no/i /english/research/groups/psy/completedmasters/2017/Kim_Jonatan_Wessel_Bjorneset/ kim_jonatan_wessel_bjorneset_testing_security_for_internet_of_things_a_survey_on_vulnerabilities_in_ip_cameras.pdf (24)
A penetration tester is reviewing the following SOW prior to engaging with a client:`Network diagrams, logical and physical asset inventory, and employees' names are to be treated as client con dential. Upon completion of the engagement, the penetration tester will submit ndings to the client's Chief Information Security O cer (CISO) via encrypted protocols and subsequently dispose of all ndings by erasing them in a secure manner.`Based on the information in the SOW, which of the following behaviors would be considered unethical? (Choose two.)
Answer(s): C,E
A company recruited a penetration tester to con gure wireless IDS over the network. Which of the following tools would BEST test the effectiveness of the wirelessIDS solutions?
https://purplesec.us/perform-wireless-penetration-test/
A penetration tester gains access to a system and establishes persistence, and then runs the following commands: cat /dev/null > temp touch `"r .bash_history temp mv temp .bash_historyWhich of the following actions is the tester MOST likely performing?
Answer(s): C
https://null-byte.wonderhowto.com/how-to/clear-logs-bash-history-hacked-linux-systems-cover-your-tracks-remain-undetected-0244768/
Which of the following web-application security risks are part of the OWASP Top 10 v2017? (Choose two.)
Answer(s): A,B
https://owasp.org/www-pdf-archive/OWASP_Top_10_2017_RC2_Final.pdf
Share your comments for CompTIA PT1-002 exam with other users:
please help us with 1z0-1107-2 dumps
please upload the practice questions
need this dumps
preparing for this exam is overwhelming. you cannot pass without the help of these exam dumps.
new to this site but i feel it is good
the correct answer to q8 is b. explanation since the mule app has a dependency, it is necessary to include project modules and dependencies to make sure the app will run successfully on the runtime on any other machine. source code of the component that the mule app is dependent of does not need to be included in the exported jar file, because the source code is not being used while executing an app. compiled code is being used instead.
good questions
Delayed the exam until December 29th.
A and D are True
good one with explanation
This is one of the most useful study guides I have ever used.
Keeping this site free takes real effort. We constantly battle automated scraping and unauthorized content copying. A quick account helps us protect the community and keep the site free.
To continue studying for your PT1-002, please sign in or create a free account.