Comprehensive Comptia Pentest+ Practice Exam Featuring Realistic Penetration Testing Scenarios, Exploitation

Comprehensive CompTIA PenTest+ practice exam featuring realistic penetration testing scenarios, exploitation techniques, reporting skills, and cybersecurity fundamentals. 1. A penetration tester uses a typical employee email account to send a phishing email exploit to managers and executives within the target organization. The goal is to see how many actually fall for the exploit and click the link in the message. What kind of penetration test is being performed in this scenario? A. Black box B. Gray box C. White box D. Red box 2. You work for a penetration testing firm. A client calls and asks you to perform an exhaustive test that deeply probes their infrastructure for vulnerabilities. What kind of test should you recommend? A. Gray box B. White box C. Black box D. Blue box 3. You are defining the rules of engagement (ROE) for an upcoming penetration test. This will be a white box assessment. This will be an internal test. No third parties may be involved. Which of the following resources could be considered in-scope for the assessment? (Choose two.) A. Active Directory users B. Password policies defined within Group Policy C. Microsoft Office 365 cloud applicationsD. Google Docs E. Microsoft Azure web servers 4.