Free Access CompTIA.PT0-001.v2022-01-15.q208 Practice Test (Page 19)

Question 86

During a penetration test, a tester runs a phishing campaign and receives a shell from an internal PC running Windows 10 OS. The tester wants to perform credential harvesting with Mimikatz.
Which of the following registry changes would allow for credential caching in memory?

A.reg add HKCU\System\CurrentControlSet\Control\SecurityProviders\WDigest /v userLogoCredential /t REG_DWORD /d 1

B.reg add HKLM\System\ControlSet002\Control\SecurityProviders\WDigest /v userLogoCredential /t REG_DWORD /d 0

C.reg add HKLM\System\CurrentControlSet\Control\SecurityProviders\WDigest /v userLogoCredential /t REG_DWORD /d 1

D.reg add HKLM\Software\CurrentControlSet\Control\SecurityProviders\WDigest /v userLogoCredential
/t REG_DWORD /d 1

Question 87

Given the following Python script:

Which of the following actions will it perform?

A.ARP spoofing

B.Port scanner

C.Reverse shell

D.Banner grabbing

Question 88

A penetration tester is exploiting the use of default public and private community strings Which of the following protocols is being exploited?

A.DNS

B.SNMP

C.HTTP

D.SMTP

Question 89

A penetration tester reports an application is only utilizing basic authentication on an Internet-facing application. Which of the following would be the BEST remediation strategy?

A.Encrypt the communication channel.

B.Enable a secure cookie flag.

C.Sanitize invalid user input.

D.Enable HTTP Strict Transport Security.

Question 90

A penetration tester has been asked to conduct OS fingering with Nmap using a company-provided text file that contains a list of IP addresses. Which of the following are needed to conduct this scan? (Choose two.)

A.-oN

B.-sV

C.-oX

D.-sS

E.-iL

F.-O

Other Version: 4597CompTIA.PT0-001.v2022-06-28.q222; 55CompTIA.Ipassleader.PT0-001.v2021-11-19.by.hardy.149q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 151Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 224CFAInstitute.ESG-Investing.v2025-09-08.q173; 175PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 151Salesforce.Data-Architect.v2025-09-05.q216; 148Adobe.AD0-E605.v2025-09-05.q50

Question 86

Question 87

Question 88

Question 89

Question 90

Download PDF File