All Posts

Comptia Pentest+ 2023 Questions and answer - Part 15

Mary Mary Smith
03 Mar 2023
2 min
0

1. Which one of the following processes allows a user to access multiple application with one set of login credentials?

A) Smart Card Authentication
B) Single Factor Authentication
C) Single Sign-on
D) Multi-factor Authentication



2. Following are the common categories of remediation activity, except ____________.

A) Technology
B) Process
C) People
D) Follow-up Actions



3. Which of the following is a method of obtaining network information such as information about hosts, ports, and of running services by scanning the networks and its ports?

A) Information Gathering
B) Network Scanning
C) Packet Crafting
D) Packet Inspection



4. From the following, in which type of enumeration does an attacker try to recover valid usernames from a web application?

A) Email Enumeration
B) Host Enumeration
C) User Enumeration
D) Token Enumeration



5. Following are the types of enumeration, except _______________.

A) Hosts
B) Web Pages and Servers
C) Groups
D) Debugging



1. Right Answer: C
Explanation: Single sign-on is an authentication process that allows a user to access multiple application with one set of login credentials.

2. Right Answer: D
Explanation: Follow-up actions are not a common category of remediation activity because it is post-report delivery activity. This may include conducting additional tests using different resources or tools than what were included in the scope of the original test.

3. Right Answer: B
Explanation: Network Scanning is a method of obtaining network information such as information about hosts, ports, and running services by scanning the networks and its ports.

4. Right Answer: C
Explanation: User enumeration is the concept in which an attacker tries to recover valid usernames from a web application. The web applications are commonly vulnerable to this kind of an attack on registration form pages, login pages, or password reset pages.

5. Right Answer: D
Explanation: Host, web pages and server, groups, email, user, social networking sites and token are the types of enumeration except debugging.

0 Comments
Leave a comment