nerdexam
CompTIA

PT0-001 · Question #208

A company received a report with the following finding While on the internal network the penetration tester was able to successfully capture SMB broadcasted user ID and password information on the net

Sign in or unlock PT0-001 to reveal the answer and full explanation for question #208. The question stem and answer options stay visible for context.

Attacks and exploits

Question

A company received a report with the following finding While on the internal network the penetration tester was able to successfully capture SMB broadcasted user ID and password information on the network and decode this information This allowed the penetration tester to then join their own computer to the ABC domain Which of the following remediation's are appropriate for the reported findings'? (Select TWO)

Options

  • ASet the Schedule Task Service from Automatic to Disabled
  • BEnable network-level authentication
  • CRemove the ability from Domain Users to join domain computers to the network
  • DSet the netlogon service from Automatic to Disabled
  • ESet up a SIEM alert to monitor Domain joined machines
  • FSet "Digitally sign network communications" to Always

Unlock PT0-001 to see the answer

You've previewed enough free PT0-001 questions. Unlock PT0-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Topics

#SMB credential capture#network-level authentication#domain join#remediation
Full PT0-001 Practice