Welcome to the Attacking Hosts,Cloud Technologies and Specialized Systems MCQs Page

Dive deep into the fascinating world of Attacking Hosts,Cloud Technologies and Specialized Systems with our comprehensive set of Multiple-Choice Questions (MCQs). This page is dedicated to exploring the fundamental concepts and intricacies of Attacking Hosts,Cloud Technologies and Specialized Systems, a crucial aspect of CompTIA PenTest+ Certification Exam PT0 002. In this section, you will encounter a diverse range of MCQs that cover various aspects of Attacking Hosts,Cloud Technologies and Specialized Systems, from the basic principles to advanced topics. Each question is thoughtfully crafted to challenge your knowledge and deepen your understanding of this critical subcategory within CompTIA PenTest+ Certification Exam PT0 002.

Check out the MCQs below to embark on an enriching journey through Attacking Hosts,Cloud Technologies and Specialized Systems. Test your knowledge, expand your horizons, and solidify your grasp on this vital area of CompTIA PenTest+ Certification Exam PT0 002.

Note: Each MCQ comes with multiple answer choices. Select the most appropriate option and test your understanding of Attacking Hosts,Cloud Technologies and Specialized Systems. You can click on an option to test your knowledge before viewing the solution for a MCQ. Happy learning!

Attacking Hosts,Cloud Technologies and Specialized Systems MCQs | Page 17 of 18

Explore more Topics under CompTIA PenTest+ Certification Exam PT0 002

01

Penetration Testing

02

Planning and Scoping Penetration Tests 🔒

03

Information Gathering 🔒

04

Vulnerability Scanning 🔒

05

Analyzing Vulnerability Scans

06

Exploiting and Pivoting 🔒

07

Exploiting Network Vulnerabilities 🔒

08

Exploiting Physical and Social Vulnerabilities

09

Exploiting Application Vulnerabilities 🔒

10

Reporting and Communication

11

Scripting for Penetration Testing 🔒

Q161.

Jeff identifies the IP address contained in content delivery network (CDN) configuration for his target organization. He knows that that server’s content is replicated by the CDN, and that if he is able to conduct a denial-of-service attack on the host he will be able to take down his target’s web presence. What type of attack is Jeff preparing to conduct?

A side-channel attack

A direct-to-origin attack

A federation misconfiguration attack

A metadata service attack

Discuss

Answer: (b).A direct-to-origin attack Explanation:Jeff is preparing a direct-to-origin attack, targeting the underlying system behind a load balancer or CDN. This involves creating a denial-of-service condition to bypass protections.

Q162.

Claire knows that her target organization leverages a significant number of IoT devices and that she is likely to need to use one or more of them as pivot points for her penetration test. Which of the following is not a common concern when conducting a penetration test involving IoT devices?

Impacts to availability

Fragile environments

Data leakage

Data corruption

Discuss

Answer: (c).Data leakage Explanation:Data leakage is not a common concern for penetration testers but rather an opportunity for defenders. Common concerns include impacts to availability, fragile environments, and data corruption.

Q163.

Susan wants to use a web application vulnerability scanner to help map an organization’s web presence and to identify existing vulnerabilities. Which of the following tools is best suited to her needs?

Paros

CUSpider

Patator

w3af

Discuss

Answer: (d).w3af Explanation:w3af, the Web Application Attack and Audit Framework, is a tool suited for mapping an organization's web presence and identifying vulnerabilities.

Q164.

Madhuri has discovered that the organization she is conducting a penetration test against makes extensive use of industrial control systems to manage a manufacturing plant. Which of the following components is least likely to respond to her normal penetration testing tools like Nmap and Metasploit?

RTUs

Field devices

PLCs

Master stations

Discuss

Answer: (b).Field devices Explanation:Field devices are unlikely to respond to normal penetration testing tools like Nmap and Metasploit, as they are controlled by RTUs or PLCs and may not use common protocols.

Q165.

Ben wants to conduct a penetration test against a service that uses containers hosted by a cloud service provider. Which of the following targets is not typically part of the scope for a penetration test against a containerized environment?

The application

APIs used by the containers

Databases used by the containers

The underlying containerization service

Discuss

Answer: (d).The underlying containerization service Explanation:Penetration tests of cloud-hosted containerization services typically exclude attacking the underlying containerization service, as it is often prohibited by terms of service.

Q166.

Jocelyn wants to conduct a resource exhaustion attack against her penetration testing target, which uses an autoscaling service architecture that leverages a content delivery network. What technique is most likely to help her succeed?

A BLE attack

A direct-to-origin attack

An IPMI attack

A VM escape attack

Discuss

Answer: (b).A direct-to-origin attack Explanation:A direct-to-origin attack is the most likely to cause a denial-of-service condition. Exhausting the resources for the source or origin server for the service is far more likely to be successful than attempting to take on the resources of a cloud-hosted content delivery network.

Q167.

Isabelle wants to gain access to a cloud infrastructure as a service environment. Which of the following is not a common technique to gain this type of access for a penetration test?

Acquire an inadvertently exposed key through a public code repository.

Use a brute-force tool against a harvested credential that requires two-factors.

Acquire an inadvertently exposed key through a misconfigured object store.

Probe for incorrectly assigned permissions for a service or system.

Discuss

Answer: (b).Use a brute-force tool against a harvested credential that requires two-factors. Explanation:Brute-forcing multifactor is not a common method to gain access to a cloud environment. Multifactor authentication is designed to resist brute force.

Q168.

Charleen has been tasked with the components of a penetration test that deal with mobile devices at a large client organization. She has been given a standard corporate device to test that uses the organization’s base configuration for devices that are issued to employees. As part of her team, you’ve been asked to provide input on the penetration testing process.

Charleen wants to use a cloned image of a phone to see if she can access it using bruteforce passcode-breaking techniques. Which of the following techniques will allow her to do this without an automatic wipe occurring if “wipe after 10 passcode attempts” is set for the device?

Reverse engineering

Containerization

Sandbox analysis

Rainbow tables

Discuss

Answer: (c).Sandbox analysis Explanation:Charleen can use sandbox analysis to attempt passcode-breaking techniques on a cloned image of a phone without triggering an automatic wipe.

Q169.

Charleen has been tasked with the components of a penetration test that deal with mobile devices at a large client organization. She has been given a standard corporate device to test that uses the organization’s base configuration for devices that are issued to employees. As part of her team, you’ve been asked to provide input on the penetration testing process.
Charleen has determined that the organization she is testing uses certificate pinning for their web application. What technique is most likely to help her overcome this so that she can conduct an on-path attack?

Social engineering

Reverse engineering

Using a flaw in object storage security

Data exfiltration

Discuss

Answer: (a).Social engineering Explanation:Persuading a user to add an additional certificate to the system or device’s certificate store is the only option that will help defeat certificate pinning. Social engineering can be used to manipulate users into taking actions that undermine security measures.

Q170.

Charleen has been tasked with the components of a penetration test that deal with mobile devices at a large client organization. She has been given a standard corporate device to test that uses the organization’s base configuration for devices that are issued to employees. As part of her team, you’ve been asked to provide input on the penetration testing process.
Charleen wants to perform static code analysis of the mobile application her target installed on the device in her possession. Which of the following tools should she select?

Objection

MobSF

Frida

Burp Suite

Discuss

Answer: (b).MobSF Explanation:MobSF is the only tool listed that provides static code analysis capabilities. It is suitable for analyzing mobile applications for security vulnerabilities.

Page 17 of 18

Planning and Scoping Penetration Tests 🔒

Information Gathering 🔒

Vulnerability Scanning 🔒

Exploiting and Pivoting 🔒

Exploiting Network Vulnerabilities 🔒

Exploiting Application Vulnerabilities 🔒

Scripting for Penetration Testing 🔒

Welcome to the Attacking Hosts,Cloud Technologies and Specialized Systems MCQs Page

Attacking Hosts,Cloud Technologies and Specialized Systems MCQs | Page 17 of 18

Explore more Topics under CompTIA PenTest+ Certification Exam PT0 002

Penetration Testing

Analyzing Vulnerability Scans

Exploiting Physical and Social Vulnerabilities

Reporting and Communication

Suggested Topics

JavaScript

Discrete Mathematics

HTML

Neural Networks

MATLAB

Digital Logic Design

Compiler Design

DBMS

UNIX