Exam Name: | CompTIA PenTest+ Certification Exam | ||
Exam Code: | PT0-002 Dumps | ||
Vendor: | CompTIA | Certification: | PenTest+ |
Questions: | 400 Q&A's | Shared By: | lando |
A penetration tester is testing a web application that is hosted by a public cloud provider. The tester is able to query the provider’s metadata and get the credentials used by the instance to authenticate itself. Which of the following vulnerabilities has the tester exploited?
Performing a penetration test against an environment with SCADA devices brings additional safety risk because the:
A penetration tester has gained access to a network device that has a previously unknown IP range on an interface. Further research determines this is an always-on VPN tunnel to a third-party supplier.
Which of the following is the BEST action for the penetration tester to take?
When developing a shell script intended for interpretation in Bash, the interpreter /bin/bash should be explicitly specified. Which of the following character combinations should be used on the first line of the script to accomplish this goal?