Exam PT0-002 topic 1 question 207 discussion

bbbbbbbb

B. Password manager recommendation This is an example of a critical find, which normally halts a pentest until remediation is complete. It would be unethical to continue testing while the company is this vulnerable.

BBBBBBBBBB

B - issue was addressed

https://www.examtopics.com/discussions/comptia/view/77771-exam-pt1-002-topic-1-question-85-discussion/ The same question is differently answered by exam topic. which one do you go to?

Tester do testing first

Since the penetration tester has already found passwords in a clear pattern, the next logical step in the engagement would be to leverage that information by creating a custom password dictionary. This would be used for password spray testing, which is a common step in testing weak or predictable password usage across systems. Why the other options are not the best next step: B. Recommend using a password manager/vault instead of text files to store passwords securely: While this is a valid recommendation, it's a remediation step, not an action the tester should immediately take next. The test should proceed with assessing how vulnerable the systems are.

The testing ain't finished till the fat lady sings. One would think that the next thing to do would be to report your finding right away as it's an unprotected area but as that isn't one of the answer; never look a gift horse in the mouth.

get your priorities right. sensitive data has already been discovered to be exposed. No need to exploit it further recommend protection

AAAAAAAAAAA

Exploitation first, remediation after.

The key words for what CompTIA is looking for here is in the beginning of the question: "in an unprotected repository". That should give a clue as to what answer addresses this.

Answer is A. Look back at question #49

The immediate concern here is that the penetration tester has found sensitive information, including usernames and passwords, stored in cleartext in an unprotected location. Before moving on to any kind of additional testing or exploitation, the priority should be to address this significant security risk. Among the options provided, the best next step would be: B. Recommend using a password manager/vault instead of text files to store passwords securely. This recommendation directly addresses the vulnerability that has been discovered and offers a practical solution to enhance security. It focuses on ensuring that the sensitive data is properly protected, rather than immediately moving forward with further penetration testing activities.

__A__ https://www.examtopics.com/discussions/comptia/view/77771-exam-pt1-002-topic-1-question-85-discussion/

This is the SAME QUESTION as #49 and we have a different answer....

It's important to address critical security risks as soon as they are discovered. In this case, the discovery of a cleartext usernames and passwords file is a significant security risk that should be addressed as soon as possible to prevent any potential data breaches. While creating a custom password dictionary for password spray testing could also be a valid action for a penetration tester, it should not be the primary focus in this situation. The primary focus should be to address the security risk and make recommendations to the organization to improve its password practices.