A penetration tester conducted a vulnerability scan against a client's critical servers and found the following:

Which of the following would be a recommendation for remediation?

• A.Implement a patch management plan
• B.Configure access controls on each of the servers
• C.Utilize the secure software development life cycle
• D.Deploy a user training program

Comment: *

Name: *

Email: *

Verification: *

A penetration tester discovers that a web server within the scope of the engagement has already been compromised with a backdoor. Which of the following should the penetration tester do NEXT?

• A.Continue the engagement and include the backdoor finding in the final report
• B.Inform the customer immediately about the backdoor
• C.Forensically acquire the backdoor Trojan and perform attribution
• D.Utilize the backdoor in support of the engagement

Comment: *

Name: *

Email: *

Verification: *

A penetration tester conducts an Nmap scan against a target and receives the following results:

Which of the following should the tester use to redirect the scanning tools using TCP port 1080 on the target?

• A.Nessus
• B.OWASPZAP
• C.ProxyChains
• D.Empire

Comment: *

Name: *

Email: *

Verification: *

A penetration tester performs the following command:
curl -I -http2 https://www.comptia.org
Which of the following snippets of output will the tester MOST likely receive?

• A.Option D
• B.Option C
• C.Option B
• D.Option A

Comment: *

Name: *

Email: *

Verification: *

When developing a shell script intended for interpretation in Bash, the interpreter /bin/bash should be explicitly specified. Which of the following character combinations should be used on the first line of the script to accomplish this goal?

• A.<#
• B.#$
• C.##
• D.<$
• E.#!

Comment: *

Name: *

Email: *

Verification: *