PT0-002 Question #459: Real Exam Question with Answer & Explanation

Question

A penetration tester was able to gain access to a plaintext file on a user workstation. Upon opening the file, the tester notices some strings of randomly generated text. The tester is able to use these strings to move laterally throughout the network by accessing the fileshare on a web application. Which of the following should the organization do to remediate the issue?

Options

• ASanitize user input.
• BImplement password management solution.
• CRotate keys.
• DUtilize certificate management.

Explanation

{"question_number": 9, "question": "A penetration tester finds a plaintext file containing randomly generated strings that can be used to move laterally and access a fileshare on a web application.", "correct_answer": "B", "explanation": "The randomly generated strings stored in plaintext are credentials - likely passwords, API tokens, or session keys - that were stored insecurely on the workstation. The core vulnerability is credential mismanagement: sensitive authentication material is stored in a readable plaintext file rather than in a secure vault. Implementing a password management solution (B) addresses the root cause by ensuring credentials are stored in an encrypted, access-controlled vault rather than plaintext files, preventing future exposure. Sanitizing user input (A) applies to injection vulnerabilities. Rotating keys (C) is a reactive measure that doesn't fix the underlying storage problem. Certificate management (D) addresses PKI and TLS certificates, not stored password/token credentials.", "generated_by": "claude-sonnet", "llm_judge_score": 4}

No community discussion yet for this question.