In Industrial Control Systems (ICS), which of the following is considered the most critical security priority?
The latest changes and updates from the administration for this exam.
Latest Update: Jun 15 2026
All questions are working fine.
In Industrial Control Systems (ICS), which of the following is considered the most critical security priority?
During the reconnaissance phase of a penetration test, an assessor plans to launch a phishing campaign that spoofs messages appearing to originate from the target organization’s domain. Before crafting the campaign, the tester wants to identify the external infrastructure responsible for receiving email for the company so that mail routing behavior and potential attack paths can be mapped. Which of the following DNS record types should the tester enumerate to identify the systems responsible for handling inbound email for the organization’s domain?
During an internal penetration test, you are modifying a Bash reconnaissance script to check whether a target system is running either an HTTP service on port 80 or an HTTPS service on port 443 before logging it as a viable web target. The script will record the host if at least one of these services is detected. Which of the following Boolean operators should you use to ensure the condition evaluates as true when either service is running?
During a social engineering engagement, a penetration tester distributes a phishing email containing a link to a malicious domain designed to harvest employee credentials. Several employees report receiving the message, and the tester confirms that users who click the link are successfully redirected to the phishing site from inside the corporate network. Which of the following controls would MOST effectively prevent employees from reaching the tester’s phishing domain if they click the link?
While reviewing a development repository, you need to identify exposed credentials embedded across historical commits. The tool must analyze past revisions and detect high-entropy strings. Which tool would best support this requirement?
Henry is conducting an attack where he attempts to use a single password or a small set of passwords across many different accounts to avoid detection. What type of attack is Henry executing?
During a penetration test, Sera identifies that the client’s network uses the WPAD (Web Proxy Auto-Discovery) protocol for proxy configuration. She wants to evaluate the potential risks of this protocol without disrupting network services. Which of the following actions should Sera take to safely demonstrate the vulnerability?
A network scan identifies a critical vulnerability in an outdated version of Apache on a server. After verifying the server, you find it is running the latest, patched version of Apache. How should this result be classified?
Clara, a penetration tester, has compromised a workstation inside a target network. She now wants to move laterally by taking advantage of vulnerable SMB shares on another system. She decides to create a relay to capture and forward authentication requests, aiming to impersonate a legitimate user and gain access to this secondary system. Which of the following tools or techniques is Clara most likely to use to perform this relay creation?
During a penetration test, an operator gains access to an application that stores user-supplied input after applying a transformation intended to evade simple content filtering and logging mechanisms. While reviewing captured data, the tester identifies the following encoded string being used to transmit payloads:
aGVsbG8gd29ybGQNCg==
To successfully analyze and decode the payload for further exploitation and reporting, the tester must first identify the encoding scheme being used. Which of the following encoding methods is MOST likely being utilized in this scenario?