Free Access CompTIA.PT0-001.v2022-01-15.q208 Practice Test (Page 11)

Question 46

HOTSPOT
You are a security analyst tasked with hardening a web server.
You have been given a list of HTTP payloads that were flagged as malicious.

Question 47

Which of the following tools is used to perform a credential brute force attack?

A.Hydra

B.John the Ripper

C.Hashcat

D.Peach

Question 48

Which of the following is an example of a spear phishing attack?

A.Targeting an executive with an SMS attack

B.Targeting a specific team with an email attack

C.Targeting random users with a USB key drop

D.Targeting an organization with a watering hole attack

Question 49

A security assessor completed a comprehensive penetration test of a company and its networks and systems.
During the assessment, the tester identified a vulnerability in the crypto library used for TLS on the company's intranet-wide payroll web application. However, the vulnerability has not yet been patched by the vendor, although a patch is expected within days. Which of the following strategies would BEST mitigate the risk of impact?

A.Require payroll users to change the passwords used to authenticate to the application. Following the patching of the vulnerability, implement another required password change.

B.Implement new training to be aware of the risks in accessing the application. This training can be decommissioned after the vulnerability is patched.

C.Implement an ACL to restrict access to the application exclusively to the finance department. Reopen the application to company staff after the vulnerability is patched.

D.Modify the web server crypto configuration to use a stronger cipher-suite for encryption, hashing, and digital signing.

Question 50

Place each of the following passwords in order of complexity from least complex (1) to most complex (4), based on the character sets represented Each password may be used only once

Other Version: 4566CompTIA.PT0-001.v2022-06-28.q222; 55CompTIA.Ipassleader.PT0-001.v2021-11-19.by.hardy.149q.pdf

Latest Upload: 103OCEG.GRCP.v2025-09-11.q211; 102HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 222CFAInstitute.ESG-Investing.v2025-09-08.q173; 157PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 147Salesforce.Data-Architect.v2025-09-05.q216; 141Adobe.AD0-E605.v2025-09-05.q50

Question 46

Question 47

Question 48

Question 49

Question 50

Download PDF File