A penetration tester is scanning a corporate lab network for potentially vulnerable services. Which of the following Nmap commands will return vulnerable ports that might be interesting to a potential attacker?

• A.nmap192.168.1.1-5-Ss22-25,80
• B.nmap192.168.1.1-5-PU22-25,80
• C.nmap192.168.1.1-5-PS22-25,80
• D.nmap192.168.1.1-5-PA22-25,80

Comment: *

Name: *

Email: *

Verification: *

Which of the following commands will allow a penetration tester to permit a shell script to be executed by the file owner?

• A.chmod o+x script.sh
• B.chmod u+e script.sh
• C.chmod u+x script.sh
• D.chmod o+e script.sh

Comment: *

Name: *

Email: *

Verification: *

Which of the following BEST describe the OWASP Top 10? (Choose two.)

• A.The risks defined in order of importance
• B.A list of all the risks of web applications
• C.A web-application security standard
• D.A checklist of Apache vulnerabilities
• E.A risk-governance and compliance framework
• F.The most critical risks of web applications

Comment: *

Name: *

Email: *

Verification: *

A software development team is concerned that a new product's 64-bit Windows binaries can be deconstructed to the underlying code. Which of the following tools can a penetration tester utilize to help the team gauge what an attacker might see in the binaries?

• A.Immunity Debugger
• B.Drozer
• C.OllyDbg
• D.GDB

Comment: *

Name: *

Email: *

Verification: *

A penetration tester has obtained root access to a Linux-based file server and would like to maintain persistence after reboot. Which of the following techniques would BEST support this objective?

• A.Run the nc -e /bin/sh <...> command.
• B.Obtain /etc/shadow and brute force the root password.
• C.Create a one-shot systemd service to establish a reverse shell.
• D.Move laterally to create a user account on LDAP

Comment: *

Name: *

Email: *

Verification: *