ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam
Go to Exam

Exam PT0-002 topic 1 question 182 discussion

Actual exam question from CompTIA's PT0-002
Question #: 182
Topic #: 1
[All PT0-002 Questions]

A penetration-testing team needs to test the security of electronic records in a company's office. Per the terms of engagement, the penetration test is to be conducted after hours and should not include circumventing the alarm or performing destructive entry. During outside reconnaissance, the team sees an open door from an adjoining building. Which of the following would be allowed under the terms of the engagement?

  • A. Prying the lock open on the records room
  • B. Climbing in an open window of the adjoining building
  • C. Presenting a false employee ID to the night guard
  • D. Obstructing the motion sensors in the hallway of the records room
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by masso435 at Dec. 5, 2022, 5:25 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
masso435
Highly Voted 2 years, 8 months ago
Selected Answer: C
It says after hours and C even says night guard. The others have the possibility of tripping an alarm.
upvoted 5 times
...
Etc_Shadow28000
Most Recent 1 year, 1 month ago
Selected Answer: C
Given the terms of engagement which specify that the penetration test should be conducted after hours and should not include circumventing the alarm or performing destructive entry, the most appropriate action that would be allowed under these terms is: C. Presenting a false employee ID to the night guard
upvoted 1 times
...
nerdo9
1 year, 3 months ago
I chose C too, but when I reread it B wouldn't set the alarm. The window is already open.
upvoted 1 times
...
Yokota
1 year, 6 months ago
Selected Answer: B
What's wrong with you all? A fake ID will not work, just try it and see what happens. Open window is the only answer.
upvoted 2 times
Jay39
1 year, 1 month ago
I'm glad you think for yourself but unfortunately you're wrong here. It was on my exam.
upvoted 1 times
...
...
Meep123
1 year, 7 months ago
Selected Answer: C
"should not include circumventing the alarm..." Eliminates B and D. "or performing destructive entry." Eliminates A.
upvoted 2 times
...
PhillyCheese
1 year, 7 months ago
Selected Answer: C
The question states to follow the ROE, where you test the security of an office, where the penetration test is "to be conducted after hours and should not include circumventing the alarm or performing destructive entry." Answer C is best because, in the context of information security, social engineering is the psychological manipulation of people into performing actions or divulging confidential information. The action would be to deceive the night guard with falsified employee IDs and permit the testing team into the building. The goal is not to circumvent the alarm, which B and D effectively do. A will perform destructive entry, hence damaging the lock or door jamb by prying the lock open. Likely, the team could have the night guard open the records room door.
upvoted 1 times
...
solutionz
2 years ago
Selected Answer: B
Under the terms of the engagement, the penetration-testing team is not allowed to perform destructive entry or circumvent the alarm. Therefore, options A, C, and D would not be allowed. Let's analyze the remaining option: B. Climbing in an open window of the adjoining building: This option does not involve destructive entry or circumventing the alarm, as the window is already open and accessible. If the penetration-testing team can gain access to the company's office through the open window without causing any damage or bypassing security measures, it would likely be allowed under the terms of the engagement. So, the correct answer is B. Climbing in an open window of the adjoining building.
upvoted 3 times
Sebatian20
1 year, 3 months ago
You are breaking and entering through the next building. Unless you have permission from the owner of the next building, I don't think B is the right way to go about this.
upvoted 3 times
...
...
KingIT_ENG
2 years, 5 months ago
Answer C is correct
upvoted 2 times
...
nickwen007
2 years, 5 months ago
B. Climbing in an open window of the adjoining building would be allowed under the terms of the engagement. Since the door was already open, there is no need to forcibly enter the records room or circumvent the alarm. However, it is important to note that it is still important to take caution not to cause any destruction or harm to property during the assessment.
upvoted 1 times
AaronS1990
2 years, 4 months ago
But climbing through an open window (that presumably should be closed and alarmed) is still circumventing the alarm
upvoted 2 times
...
[Removed]
2 years, 5 months ago
C is correct only option without alarms
upvoted 1 times
...
...
shakevia463
2 years, 6 months ago
Selected Answer: C
This is the only option without potential alarms.
upvoted 4 times
...
kapen
2 years, 7 months ago
Selected Answer: C
"to be conducted after hours and should not include circumventing the alarm or performing destructive entry" Option C seems to be the correct answer
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel