CompTIA CompTIA Certifications PT0-003 Questions & Answers

• Question 231:

  HOTSPOT

  You are a security analyst tasked with hardening a web server.

  You have been given a list of HTTP payloads that were flagged as malicious.

  INSTRUCTIONS

  Given the following attack signatures, determine the attack type, and then identify the associated remediation to prevent the attack in the future.

  If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

  Hot Area:

  

  Correct Answer:

  

• Question 232:

  A penetration tester was able to gather MD5 hashes from a server and crack the hashes easily with rainbow tables.

  Which of the following should be included as a recommendation in the remediation report?

  A. Stronger algorithmic requirements

  B. Access controls on the server

  C. Encryption on the user passwords

  D. A patch management program

  Correct Answer: A

• Question 233:

  A security professional wants to test an IoT device by sending an invalid packet to a proprietary service listening on TCP port 3011. Which of the following would allow the security professional to easily and programmatically manipulate the TCP header length and checksum using arbitrary numbers and to observe how the proprietary service responds?

  A. Nmap

  B. tcpdump

  C. Scapy

  D. hping3

  Correct Answer: C

  https://0xbharath.github.io/art-of-packet-crafting-with- scapy/scapy/creating_packets/index.html

  https://scapy.readthedocs.io/en/latest/introduction.html#about-scapy

  Scapy is a powerful and interactive packet manipulation tool that allows the security professional to easily and programmatically manipulate the TCP header length and checksum using arbitrary numbers and to observe how the proprietary service responds. Scapy can craft, send, receive, and analyze packets of various protocols, such as TCP, UDP, ICMP, or IP. Scapy can also modify any field of any layer of a packet, such as the TCP header length and checksum, which are used to indicate the size and integrity of the TCP segment. Scapy can also display the response packets from the target system, which can reveal how the proprietary service handles the invalid packet.

• Question 234:

  Which of the following tools would BEST allow a penetration tester to capture wireless handshakes to reveal a Wi-Fi password from a Windows machine?

  A. Wireshark

  B. EAPHammer

  C. Kismet

  D. Aircrack-ng

  Correct Answer: D

  The BEST tool to capture wireless handshakes to reveal a Wi-Fi password from a Windows machine is Aircrack-ng. Aircrack-ng is a suite of tools used to assess the security of wireless networks. It starts by capturing wireless network packets [1], then attempts to crack the network password by analyzing them [1]. Aircrack-ng supports FMS, PTW, and other attack types, and can also be used to generate keystreams for WEP and WPA-PSK encryption. It is capable of running on Windows, Linux, and Mac OS X. The BEST tool to capture wireless handshakes to reveal a Wi-Fi password from a Windows machine is Aircrack-ng. Aircrack-ng is a suite of tools used to assess the security of wireless networks. It starts by capturing wireless network packets [1], then attempts to crack the network password by analyzing them [1]. Aircrack-ng supports FMS, PTW, and other attack types, and can also be used to generate keystreams for WEP and WPA-PSK encryption. It is capable of running on Windows, Linux, and Mac OS X.