Exam PT0-003 Topic 4 Question 281 Discussion

Actual exam question for CompTIA's PT0-003 exam
Question #: 281
Topic #: 4
During an assessment, a penetration tester gains a low-privilege shell and then runs the following command:
findstr /SIM /C:"pass" *.txt *.cfg *.xml
Which of the following is the penetration tester trying to enumerate?

Suggested Answer: D Vote an answer

The command searches for the keyword "pass" (passwords) across all .txt, .cfg, and .xml files, which are common locations for stored credentials.
Option A (Configuration files) ❌: While .cfg files may contain settings, the search is specifically for secrets (passwords).
Option B (Permissions) ❌: The command does not list permissions.
Option C (Virtual hosts) ❌: This does not relate to virtual host enumeration.
Option D (Secrets) ✅: Correct. The tester is looking for stored passwords or sensitive data.
Reference: CompTIA PenTest+ PT0-003 Official Guide - Privilege Escalation Techniques

by Martha at Jun 21, 2026, 04:32 AM

Limited Time Offer

15%

Off

Get Premium PT0-003 Questions as Interactive Self Test Engine or PDF

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

Contact Us

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Our Working Time: ( GMT 0:00-15:00 ) From Monday to Saturday

Support: Contact now 

日本語 Deutsch 繁体中文 한국어

Useful Links

Latest Updated