100% Free CompTIA PT0-001 Exam Sample Questions | Verified By Experts

Question 1:
A constant wants to scan all the TCP Pots on an identified device. Which of the following Nmap switches
will complete this task?

A. -p
B. -p ALX,
C. -p 1-65534
D. -port 1-65534

Answer: C 


Question 2: 
The following command is run on a Linux file system:
Chmod 4111 /usr/bin/sudo
Which of the following issues may be exploited now?

A. Kernel vulnerabilities
B. Sticky bits
C. Unquoted service path
D. Misconfigured sudo

Answer: B 


Question 3:
A client is asking a penetration tester to evaluate a new web application for availability. Which of the
following types of attacks should the tester use?

A. TCP SYN flood
B. SQL injection
C. xss
D. XMAS scan

Answer: B 


Question 4:
During a penetration test, a tester runs a phishing campaign and receives a shell from an internal PC
running Windows 10 OS. The tester wants to perform credential harvesting with Mimikatz.
Which of the following registry changes would allow for credential caching in memory?

A. reg add HKLM\System\ControlSet002\Control\SecurityProviders\WDigest /v userLogoCredential /t
REG_DWORD /d 0
B. reg add HKCU\System\CurrentControlSet\Control\SecurityProviders\WDigest /v userLogoCredential
/t REG_DWORD /d 1
C. reg add HKLM\Software\CurrentControlSet\Control\SecurityProviders\WDigest /v userLogoCredential
/t REG_DWORD /d 1
D. reg add HKLM\System\CurrentControlSet\Control\SecurityProviders\WDigest /v userLogoCredential
/t REG_DWORD /d 1


Answer: A 


Question 5:
In which of the following components is an exploited vulnerability MOST likely to affect multiple running
application containers at once?

A. Common libraries
B. Configuration files
C. Sandbox escape
D. ASLR bypass

Answer: A