Valid PT0-002 Dumps shared by ExamDiscuss.com for Helping Passing PT0-002 Exam! ExamDiscuss.com now offer the newest PT0-002 exam dumps, the ExamDiscuss.com PT0-002 exam questions have been updated and answers have been corrected get the newest ExamDiscuss.com PT0-002 dumps with Test Engine here:
During a client engagement, a penetration tester runs the following Nmap command and obtains the following output: nmap -sV -- script ssl-enum-ciphers -p 443 remotehost | TLS_ECDHE_ECDSA_WITH_RC4_128_SHA | TLS_ECDHE_RSA_WITH_RC4_128_SHA TLS_RSA_WITH_RC4_128_SHA (rsa 2048) TLS_RSA_WITH_RC4_128_MD5 (rsa 2048) Which of the following should the penetration tester include in the report?
Correct Answer: A
The output of the Nmap command shows that the remote host supports RC4 ciphers, which are considered weak and vulnerable to several attacks, such as the BEAST and the RC4 NOMORE attacks. RC4 ciphers should not be used in modern TLS implementations, and they are not supported by TLS 1.3. Therefore, the penetration tester should include this finding in the report and recommend disabling RC4 ciphers on the server. References: *The Official CompTIA PenTest+ Study Guide (Exam PT0-002), Chapter 5: Attacks and Exploits, page 259. *Nmap ssl-enum-ciphers NSE Script - InfosecMatter1 *How do I list the SSL/TLS cipher suites a particular website offers?