ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam
Go to Exam

Exam PT0-002 topic 1 question 135 discussion

Actual exam question from CompTIA's PT0-002
Question #: 135
Topic #: 1
[All PT0-002 Questions]

A physical penetration tester needs to get inside an organization's office and collect sensitive information without acting suspiciously or being noticed by the security guards. The tester has observed that the company's ticket gate does not scan the badges, and employees leave their badges on the table while going to the restroom. Which of the following techniques can the tester use to gain physical access to the office? (Choose two.)

  • A. Shoulder surfing
  • B. Call spoofing
  • C. Badge stealing
  • D. Tailgating
  • E. Dumpster diving
  • F. Email phishing
Show Suggested Answer Hide Answer
Suggested Answer: CD 🗳️
by Neolot at Oct. 8, 2022, 1:09 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Neolot
Highly Voted 2 years, 8 months ago
Selected Answer: CD
This should be C and D
upvoted 13 times
...
CrowMan420
Most Recent 9 months ago
It's definitely A, and D. Anybody who chose C can't read. I just said that it doesn't accept badges.
upvoted 1 times
noonie
5 months, 2 weeks ago
"Anybody who chose C can't read" - Typical brainrot response. Even if you are right about your answer, why talk down to your colleagues? We are all here just trying to pass the test and better ourselves.
upvoted 1 times
...
...
nerdo9
1 year, 1 month ago
I'm convinced they're posting the wrong answers on purpose. Shoulder surfing isn't even a good option for this scenario.
upvoted 4 times
...
solutionz
1 year, 10 months ago
Selected Answer: CD
In this scenario, the physical penetration tester has observed certain behaviors and weaknesses that can be exploited to gain physical access to the office. Based on the information provided, the two techniques that would be most applicable are: C and D The other options listed (shoulder surfing, call spoofing, dumpster diving, and email phishing) could be used in various contexts for gathering information or gaining unauthorized access but are not directly applicable to the specific situation described here.
upvoted 1 times
...
ciguy935yaknow
2 years, 2 months ago
Personally, I am thinking A&D. The ticket gate does not scan the badge, so tailgating would be the best way to get in. Then to get sensitive info without acting suspicious, best option would be shoulder surfing.
upvoted 2 times
e7cde6e
1 year, 2 months ago
The question is how to gain physical access unnoticed by security. Shoulder Surfing would not aid in accomplishing this. C & D
upvoted 2 times
...
...
AaronS1990
2 years, 2 months ago
Selected Answer: CD
Definitely C and D this one. It has nothing to do with shoulder surfing
upvoted 1 times
...
cy_analyst
2 years, 3 months ago
Selected Answer: CD
C & D for easy.
upvoted 3 times
...
[Removed]
2 years, 4 months ago
C and D is the answer
upvoted 2 times
...
NotAHackerJustYet
2 years, 4 months ago
Selected Answer: CD
C. Badge Stealing: This technique involves the tester stealing an employee's badge from the table in order to gain access to the office. This is a valid and effective way for the tester to gain access to the office without being noticed. D. Tailgating: This technique involves the tester following an employee into the office without swiping their badge. Since the ticket gate does not scan the badges, this is an effective way for the tester to gain access to the office without being noticed.
upvoted 3 times
NotAHackerJustYet
2 years, 4 months ago
A. Shoulder Surfing: This technique involves the tester watching an employee type in their password or PIN number in order to gain access to the office. This technique is not effective in this scenario, since the ticket gate does not require a password or PIN. B. Call Spoofing: This technique involves the tester spoofing an employee's phone number in order to gain access to the office. This technique is not effective in this scenario, since the ticket gate does not require a phone number. E. Dumpster Diving: This technique involves the tester searching through the company's dumpster in order to find sensitive information. This technique is not effective in this scenario, since the tester is trying to gain physical access to the office. F. Email Phishing: This technique involves the tester sending an email with a malicious link or attachment in order to gain access to the office. This technique is not effective in this scenario, since the tester is trying to gain physical access to the office.
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel