Want to pass your CompTIA PenTest+ Exam PT0-001 exam in the very first attempt? Try Pass2lead! It is equally effective for both starters and IT professionals.
VCE
Which of the following commands starts the Metasploit database?
A. msfconsole
B. workspace
C. msfvenom
D. db_init
E. db_connect
Click the exhibit button.
Given the Nikto vulnerability, scan output shown in the exhibit, which of the following exploitation techniques might be used to exploit the target system? (Choose two.)
A. Arbitrary code execution
B. Session hijacking
C. SQL injection
D. Login credential brute-forcing
E. Cross-site request forgery
Joe, an attacker, intends to transfer funds discreetly from a victim's account to his own. Which of the following URLs can he use to accomplish this attack?
A. https://testbank.com/BankingApp/ACH.aspx?CustID=435345andaccountType=Fandaction-ACHTransferandsenderID=654846andnotify=Falseandcreditaccount='OR 1=1 AND select username from testbank.custinfo where username like `Joe'andamount=200
B. https://testbank.com/BankingApp/ACH.aspx?CustID=435345andaccountType=Fandaction-ACHTransferandsenderID=654846andnotify=Falseandcreditaccount='OR 1=1 AND select username from testbank.custinfo where username like `Joe' andamount=200
C. https://testbank.com/BankingApp/ACH.aspx?CustID=435345andaccountType=Fandaction-ACHTransferandsenderID=654846andnotify=Trueandcreditaccount='OR 1=1 AND select username from testbank.custinfo where username like `Joe' andamount=200
D. https://testbank.com/BankingApp/ACH.aspx?CustID=435345andaccountType=Fandaction-ACHTransferandsenderID=654846andnotify=Trueandcreditaccount='AND 1=1 AND select username from testbank.custinfo where username like `Joe' andamount=200