Free CompTIA PenTest+ PT0-002 Practice Question

Given a scenario where a penetration tester finds an IoT device running with default configurations that were hard-coded by the manufacturer, which of the following actions would be the BEST to perform in order to demonstrate the potential impact of this vulnerability?

  • Attempt to access the device using the default credentials

  • Analyze the network traffic to and from the device for hard-coded values

  • Perform a factory reset to see if the hard-coded configurations are removed

  • Expose the device to varying levels of electromagnetic interference to test for defaults

This question's topic:
CompTIA PenTest+ PT0-002 / 
Attacks and Exploits
Your Score:

Check or uncheck an objective to set which questions you will receive.