COMPTIA PENTEST+ (PT0-003) EXAM NEWEST 2026
ACTUAL EXAM| COMPLETE REAL EXAM
QUESTIONS AND CORRECT VERIFIED ANSWERS/
ALREADY GRADED A+| COMPTIA PENTEST+ (PT0-
003) EXAM REVIEW (MOST RECENT!!)
Which regulation enforces strict rules on data protection within the EU,
including requirements like obtaining permission for data processing and
performing data impact assessments? - ANSWER - GDPR
Why is it important for penetration testers to understand and operate
within regulations such as GDPR and GLBA? - ANSWER - To ensure
legal compliance and protect sensitive data
Which type of assessment focuses on evaluating the security of wireless
networks, identifying vulnerabilities like weak encryption and rogue
access points? - ANSWER - Wireless assessment
Which control group in the OWASP MASVS ensures the security of
data in transit and at rest using cryptographic methods? - ANSWER -
MASVS-CRYPTO
Which phase of the PTES framework involves gaining knowledge about
the target system using both passive and active techniques? - ANSWER
- Information Gathering
pg. 1
,Which STRIDE element involves exploiting weaknesses in a system's
authentication process to assume another user's identity? - ANSWER -
Spoofing
Which tool or method best allows testers to retrieve old versions of
websites to gather potentially sensitive information that may have been
removed from a current site? - ANSWER - Wayback Machine
Which tool is commonly used to analyze captured network packets and
filter them based on protocols, IP addresses, and port numbers? -
ANSWER - Wireshark
Which technique involves sending requests to open ports to retrieve
information about the software and version running on the system? -
ANSWER - Banner Grabbing
Which tool or method allows testers to collect data from a website's
markup code and potentially uncover sensitive details such as server
types or internal names? - ANSWER - HTML Scraping
Which of the following is a common cause of information disclosure,
often revealing sensitive details such as database dumps or server file
paths?
A. Error messages
B. DNS misconfiguration
C. Password spraying
D. Social engineering - Correct Answer - Error messages
pg. 2
,What command in Linux is used to perform DNS lookups to retrieve
information about a domain's IP addresses?
A. nslookup
B. dig
C. ping
D. traceroute - Correct Answer - dig
What role do Certificate Transparency logs play in enhancing digital
certificate security? - ANSWER - Detect rogue certificates
Which transport layer protocol is faster but less reliable than TCP and is
often used to identify potential denial-of-service vulnerabilities? -
ANSWER - UDP
Which type of DNS query attempts to replicate DNS records between
DNS servers? - ANSWER - Zone transfer
Which tool is commonly used for directory enumeration by brute-
forcing possible URLs to uncover hidden directories on a web server? -
ANSWER - DirBuster
What command is used in Windows environments to display a list of
shared resources on a local network? - ANSWER - net /view
Which tool is primarily used to gather email addresses, subdomains, and
IP addresses from public sources during the reconnaissance phase? -
ANSWER - theHarvester
pg. 3
, Which tool provides a graphical interface to map relationships between
domains, email addresses, and IP addresses? - ANSWER - Maltego
Which tool is used for capturing and attempting to gain access to the
WPA/WPA2 keys during wireless network testing?
A. Aircrack-ng
B. WiGLE
C. InSSIDer
D. Censys - Correct Answer - Aircrack-ng
Which misconfiguration can lead to privilege escalation by allowing
malicious executables to be run from unexpected file locations?
A. Unquoted service paths
B. Weak passwords
C. Open ports
D. Misconfigured firewalls - Correct Answer - Unquoted service paths
What type of vulnerability occurs when the outcome of a process is
dependent on the timing of events?
A. Race condition
B. Buffer overflow
C. SQL injection
D. Cross-site scripting - Correct Answer - race condition
What attack occurs when data is stored outside the allocated memory
space?
pg. 4
ACTUAL EXAM| COMPLETE REAL EXAM
QUESTIONS AND CORRECT VERIFIED ANSWERS/
ALREADY GRADED A+| COMPTIA PENTEST+ (PT0-
003) EXAM REVIEW (MOST RECENT!!)
Which regulation enforces strict rules on data protection within the EU,
including requirements like obtaining permission for data processing and
performing data impact assessments? - ANSWER - GDPR
Why is it important for penetration testers to understand and operate
within regulations such as GDPR and GLBA? - ANSWER - To ensure
legal compliance and protect sensitive data
Which type of assessment focuses on evaluating the security of wireless
networks, identifying vulnerabilities like weak encryption and rogue
access points? - ANSWER - Wireless assessment
Which control group in the OWASP MASVS ensures the security of
data in transit and at rest using cryptographic methods? - ANSWER -
MASVS-CRYPTO
Which phase of the PTES framework involves gaining knowledge about
the target system using both passive and active techniques? - ANSWER
- Information Gathering
pg. 1
,Which STRIDE element involves exploiting weaknesses in a system's
authentication process to assume another user's identity? - ANSWER -
Spoofing
Which tool or method best allows testers to retrieve old versions of
websites to gather potentially sensitive information that may have been
removed from a current site? - ANSWER - Wayback Machine
Which tool is commonly used to analyze captured network packets and
filter them based on protocols, IP addresses, and port numbers? -
ANSWER - Wireshark
Which technique involves sending requests to open ports to retrieve
information about the software and version running on the system? -
ANSWER - Banner Grabbing
Which tool or method allows testers to collect data from a website's
markup code and potentially uncover sensitive details such as server
types or internal names? - ANSWER - HTML Scraping
Which of the following is a common cause of information disclosure,
often revealing sensitive details such as database dumps or server file
paths?
A. Error messages
B. DNS misconfiguration
C. Password spraying
D. Social engineering - Correct Answer - Error messages
pg. 2
,What command in Linux is used to perform DNS lookups to retrieve
information about a domain's IP addresses?
A. nslookup
B. dig
C. ping
D. traceroute - Correct Answer - dig
What role do Certificate Transparency logs play in enhancing digital
certificate security? - ANSWER - Detect rogue certificates
Which transport layer protocol is faster but less reliable than TCP and is
often used to identify potential denial-of-service vulnerabilities? -
ANSWER - UDP
Which type of DNS query attempts to replicate DNS records between
DNS servers? - ANSWER - Zone transfer
Which tool is commonly used for directory enumeration by brute-
forcing possible URLs to uncover hidden directories on a web server? -
ANSWER - DirBuster
What command is used in Windows environments to display a list of
shared resources on a local network? - ANSWER - net /view
Which tool is primarily used to gather email addresses, subdomains, and
IP addresses from public sources during the reconnaissance phase? -
ANSWER - theHarvester
pg. 3
, Which tool provides a graphical interface to map relationships between
domains, email addresses, and IP addresses? - ANSWER - Maltego
Which tool is used for capturing and attempting to gain access to the
WPA/WPA2 keys during wireless network testing?
A. Aircrack-ng
B. WiGLE
C. InSSIDer
D. Censys - Correct Answer - Aircrack-ng
Which misconfiguration can lead to privilege escalation by allowing
malicious executables to be run from unexpected file locations?
A. Unquoted service paths
B. Weak passwords
C. Open ports
D. Misconfigured firewalls - Correct Answer - Unquoted service paths
What type of vulnerability occurs when the outcome of a process is
dependent on the timing of events?
A. Race condition
B. Buffer overflow
C. SQL injection
D. Cross-site scripting - Correct Answer - race condition
What attack occurs when data is stored outside the allocated memory
space?
pg. 4
