Comptia udemy selected Pt0-003 Pentest+ Questions Answers by Reyan q84 vce pdf

Page: 9 / 16

Exam Name:	CompTIA PenTest+ Exam
Exam Code:	PT0-003 Dumps
Vendor:	CompTIA	Certification:	PenTest+
Questions:	233 Q&A's	Shared By:	reyan

Question 36

Which of the following post-exploitation activities allows a penetration tester to maintain persistent access in a compromised system?

Options:

Creating registry keys

Installing a bind shell

Executing a process injection

Setting up a reverse SSH connection

Discussion

Answer:

Explanation:

Maintaining persistent access in a compromised system is a crucial goal for a penetration tester after achieving initial access. Here’s an explanation of each option and why creating registry keys is the preferred method:

Creating registry keys (Answer: A):

Explanation: Modifying or adding specific registry keys can ensure that malicious code or backdoors are executed every time the system starts, thus maintaining persistence.

Advantages: This method is stealthy and can be effective in maintaining access over long periods, especially on Windows systems.

Example: Adding a new entry to the HKLM\Software\Microsoft\Windows\CurrentVersion\Run registry key to execute a malicious script upon system boot.

[References: Persistence techniques involving registry keys are common in penetration tests and are highlighted in various cybersecurity resources as effective methods to maintain access., Installing a bind shell (Option B):, Explanation: A bind shell listens on a specific port and waits for an incoming connection from the attacker., Drawbacks: This method is less stealthy and can be easily detected by network monitoring tools. It also requires an open port, which might be closed or filtered by firewalls., Executing a process injection (Option C):, Explanation: Process injection involves injecting malicious code into a running process to evade detection., Drawbacks: While effective for evading detection, it doesn’t inherently provide persistence. The injected code will typically be lost when the process terminates or the system reboots., Setting up a reverse SSH connection (Option D):, Explanation: A reverse SSH connection allows the attacker to connect back to their machine from the compromised system., Drawbacks: This method can be useful for maintaining a session but is less reliable for long-term persistence. It can be disrupted by network changes or monitoring tools., Conclusion: Creating registry keys is the most effective method for maintaining persistent access in a compromised system, particularly in Windows environments, due to its stealthiness and reliability., , , , ]

Ernest

That's amazing. I think I'm going to give Cramkey Dumps a try for my next exam. Thanks for telling me about them! CramKey admin please share more questions……You guys are amazing.

Nate Jul 12, 2025

I failed last week, I never know this site , but amazed to see all these questions were in my exam week before. I feel bad now, why I didn’t bother this site. Thanks Cramkey, Excellent Job.

Nell

Are these dumps reliable?

Ernie Jul 13, 2025

Yes, very much so. Cramkey Dumps are created by experienced and certified professionals who have gone through the exams themselves. They understand the importance of providing accurate and relevant information to help you succeed.

Ivan

I tried these dumps for my recent certification exam and I found it pretty helpful.

Elis Jul 4, 2025

Agree!!! The questions in the dumps were quite similar to what came up in the actual exam. It gave me a good idea of the types of questions to expect and helped me revise efficiently.

Reeva

Wow what a success I achieved today. Thank you so much Cramkey for amazing Dumps. All students must try it.

Amari Jul 2, 2025

Wow, that's impressive. I'll definitely keep Cramkey in mind for my next exam.

Question 37

A penetration tester needs to use the native binaries on a system in order to download a file from the internet and evade detection. Which of the following tools would the tester most likely use?

Options:

netsh.exe

certutil.exe

nc.exe

cmdkey.exe

Discussion

Question 38

Before starting an assessment, a penetration tester needs to scan a Class B IPv4 network for open ports in a short amount of time. Which of the following is the best tool for this task?

Options:

Burp Suite

masscan

Nmap

hping