A tester runs an Nmap scan against a Windows server and receives the following results: Nmap scan report for win_dns.local (10.0.0.5) Host is up (0.014s latency) Port State Service 53/tcp open domain 161/tcp open snmp 445/tcp open smb-ds 3389/tcp open rdp Which of the following TCP ports should be prioritized for using hash-based relays?

A penetration tester wants to check the security awareness of specific workers in the company with targeted attacks. Which of the following attacks should the penetration tester perform?

During a security assessment, a penetration tester gains access to an internal server and manipulates some data to hide its presence. Which of the following is the best way for the penetration tester to hide the activities performed? 

During a security assessment for an internal corporate network, a penetration tester wants to gain unauthorized access to internal resources by executing an attack that uses software to disguise itself as legitimate software. Which of the following host-based attacks should the tester use? 

A penetration tester runs a vulnerability scan that identifies several issues across numerous customer hosts. The executive report outlines the following information: Server High-severity vulnerabilities 1. Development sandbox server 32 2. Back office file transfer server 51 3. Perimeter network web server 14 4. Developer QA server 92 The client is concerned about the availability of its consumer-facing production application. Which of the following hosts should the penetration tester select for additional manual testing?