PT0-002 Free Practice Test

An exploit developer is coding a script that submits a very large number of small requests to a web server until the server is compromised. The script must examine each response received and compare the data to a large number of strings to determine which data to submit next. Which of the following data structures should the exploit developer use to make the string comparison and determination as efficient as possible?

1. A. A list
2. B. A tree
3. C. A dictionary
4. D. An array

Correct Answer: C
data structures are used to store data in an organized form, and some data structures are more efficient and suitable for certain operations than others. For example, hash tables, skip lists and jump lists are some dictionary data structures that can insert and access elements efficiently3.
For string comparison, there are different algorithms that can measure how similar two strings are, such as Levenshtein distance, Hamming distance or Jaccard similarity4. Some of these algorithms can be implemented using data structures such as arrays or hashtables5.

A penetration tester is looking for vulnerabilities within a company's web application that are in scope. The penetration tester discovers a login page and enters the following string in a field:
1;SELECT Username, Password FROM Users;
Which of the following injection attacks is the penetration tester using?

1. A. Blind SQL
2. B. Boolean SQL
3. C. Stacked queries
4. D. Error-based

Correct Answer: D

Which of the following protocols or technologies would provide in-transit confidentiality protection for emailing the final security assessment report?

1. A. S/MIME
2. B. FTPS
3. C. DNSSEC
4. D. AS2

Correct Answer: A

A penetration tester initiated the transfer of a large data set to verify a proof-of-concept attack as permitted by the ROE. The tester noticed the client's data included PII, which is out of scope, and immediately stopped the transfer. Which of the following MOST likely explains the penetration tester's decision?

1. A. The tester had the situational awareness to stop the transfer.
2. B. The tester found evidence of prior compromise within the data set.
3. C. The tester completed the assigned part of the assessment workflow.
4. D. The tester reached the end of the assessment time frame.

Correct Answer: A

A company hired a penetration-testing team to review the cyber-physical systems in a manufacturing plant.
The team immediately discovered the supervisory systems and PLCs are both connected to the company intranet. Which of the following assumptions, if made by the penetration-testing team, is MOST likely to be
valid?

1. A. PLCs will not act upon commands injected over the network.
2. B. Supervisors and controllers are on a separate virtual network by default.
3. C. Controllers will not validate the origin of commands.
4. D. Supervisory systems will detect a malicious injection of code/commands.

Correct Answer: C