CompTIA PT0-003 Practice Questions

The latest changes and updates from the administration for this exam.

verified

Latest Update: Jun 15 2026

All questions are working fine.

All Questions (540)bookmarkBookmarked (0)

All540Show all accessible questions in this exam.Missed540Questions you haven't attempted yet.Incorrect0Questions you answered incorrectly on your last attempt.

Question 71

During a network penetration test, a tester uses a scripting framework to manually construct TCP (Transmission Control Protocol) packets with non-standard flag combinations, altered sequence numbers, and custom payloads. The tester transmits these packets toward a perimeter firewall and IDS (Intrusion Detection System) to evaluate detection thresholds and identify potential evasion techniques without relying on standard scanning tools. Which of the following techniques is the tester MOST likely performing?

Packet crafting

Packet filtering

Packet injection

Packet sniffing

Question 72

During a social engineering engagement, your objective is to evaluate whether senior leadership would interact with malicious content delivered through mobile devices rather than corporate email. The client has authorized testing using Short Message Service (SMS) messages that contain a link to a credential-harvesting page designed to mimic a legitimate login portal. Which action would BEST accomplish this objective?

Call the CTO's assistant using a pretext to gather information about their schedule

Send a targeted email with a malicious attachment to the organization's CEO

Send a text message with a malicious link to the organization's executives

Send targeted emails with a malicious attachment to the sales team

Question 73

You are planning to exploit a network-based vulnerability against an organization as part of a penetration test. You attempted to connect your laptop to the network jack in their conference room. You found yourself in the highly restricted VLAN that the organization allows its visitors to connect to when conducting presentations. This VLAN only allows you to access the internet, not the internal network. You decide you need to conduct VLAN hopping. Which of the following methods would be MOST likely to succeed?

Poison or overflow the MAC table of the switch

Connect a wireless access point to the conference room's network jack

Harvest the user credentials of an employee and use those to connect

Spoof the MAC address of the room's VOIP phone to your laptop

Question 74

DeepScan supports data-flow analysis and understands the execution flow of a program. It allows you to see possible security flaws without executing the code. Which of the following types of tools would DeepScan be classified as?

Static code analyzer

Fault injector

Decompiler

Fuzzer

Question 75

A vulnerability scan reports no issues on a host. The tester manually accesses a web application on the host and identifies an injection flaw. How should the scan result be classified?

False positive

Informational

True positive

False negative

Question 76

During passive reconnaissance, you attempt to identify accidentally exposed configuration files without interacting directly with the target infrastructure. So, you execute the following query:

The results include multiple publicly accessible files containing credentials. Which of the following techniques are you using?

Search engine analysis

Web crawling

DNS enumeration

Packet crafting

Question 77

While conducting a penetration test against an organization, you gained access to the CEO's account. You log in as the CEO and send the following email:

Which of the following attacks are you utilizing in this scenario?

Smishing attack

Deauthentication attack

Whaling attack

BEC attack

Question 78

What activity is not a part of the post-engagement cleanup?

Removing tester-created credentials

Removing tools

Removing shells

Modifying log files

Question 79

During the Open-source Intelligence (OSINT) phase of an external engagement, you are using Maltego to analyze a target organization’s primary domain. You want the tool to automatically query external data sources and expand your investigation by discovering additional related infrastructure and user-associated artifacts without manually researching each item. Which Maltego feature enables this automated expansion of related entities?

Entity formatting

Scripting Console

Graph View

Transforms

Question 80

During a wireless assessment, you need to passively identify nearby access points, signal strength, and channel usage to determine optimal targets for further testing. Which tool would best provide this information without initiating connections?

Wireshark

Aircrack-ng

tcpdump

InSSIDer

Update History

Update History