A penetration tester is reviewing the following SOW prior to engaging with a client:
"Network diagrams, logical and physical asset inventory, and employees' names are to be treated as client confidential. Upon completion of the engagement, the penetration tester will submit findings to the client's Chief Information Security Officer (CISO) via encrypted protocols and subsequently dispose of all findings by erasing them in a secure manner." Based on the information in the SOW, which of the following behaviors would be considered unethical? (Choose two.)

• A.Utilizing proprietary penetration-testing tools that are not available to the public or to the client for auditing and inspection
• B.Utilizing public-key cryptography to ensure findings are delivered to the CISO upon completion of the engagement
• C.Failing to share with the client critical vulnerabilities that exist within the client architecture to appease the client's senior leadership team
• D.Seeking help with the engagement in underground hacker forums by sharing the client's public IP address
• E.Using a software-based erase tool to wipe the client's findings from the penetration tester's laptop
• F.Retaining the SOW within the penetration tester's company for future use so the sales team can plan future engagements

Comment: *

Name: *

Email: *

Verification: *

A penetration tester runs the following command on a system:
find / -user root -perm -4000 -print 2>/dev/null
Which of the following is the tester trying to accomplish?

• A.Set the SGID on all files in the / directory
• B.Find the /root directory on the system
• C.Find files with the SUID bit set
• D.Find files that were created during exploitation and move them to /dev/null

Comment: *

Name: *

Email: *

Verification: *

During an engagement, a penetration tester found the following list of strings inside a file:

Which of the following is the BEST technique to determine the known plaintext of the strings?

• A.Brute-force attack
• B.Credential-stuffing attack
• C.Rainbow table attack
• D.Dictionary attack

Comment: *

Name: *

Email: *

Verification: *

A penetration tester analyzed a web-application log file and discovered an input that was sent to the company's web application. The input contains a string that says "WAITFOR." Which of the following attacks is being attempted?

• A.SQL injection
• B.HTML injection
• C.Remote command injection
• D.DLL injection

Comment: *

Name: *

Email: *

Verification: *

A penetration tester writes the following script:

Which of the following is the tester performing?

• A.Searching for service vulnerabilities
• B.Trying to recover a lost bind shell
• C.Building a reverse shell listening on specified ports
• D.Scanning a network for specific open ports

Comment: *

Name: *

Email: *

Verification: *