CompTIA PenTest+ Exam (PT0-003) - CompTIA Actual Exam Questions

[Tools and Code Analysis] A penetration tester launches an attack against company employees. The tester clones the company's intranet login page and sends the link via email to all employees. Which of the following best describes the objective and tool selected by the tester to perform this activity?

A penetration tester cannot complete a full vulnerability scan because the client's WAF is blocking communications. During which of the following activities should the penetration tester discuss this issue with the client?

During a penetration test, the tester wants to obtain public information that could be used to compromise the organization's cloud infrastructure. Which of the following is the most effective resource for the tester to use for this purpose?

[Information Gathering and Vulnerability Scanning] While conducting a reconnaissance activity, a penetration tester extracts the following information: Emails: - admin@acme.com - sales@acme.com - support@acme.com Which of the following risks should the tester use to leverage an attack as the next step in the security assessment?

[Tools and Code Analysis] A company hires a penetration tester to test the security of its wireless networks. The main goal is to intercept and access sensitive data. Which of the following tools should the security professional use to best accomplish this task?