Summer Sale Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: buysanta

Exact2Pass Menu

Certified Cloud Pentesting eXpert - Azure

Last Update 2 hours ago Total Questions : 31

The Certified Cloud Pentesting eXpert - Azure content is now fully updated, with all current exam questions added 2 hours ago. Deciding to include CCPenX-Az practice exam questions in your study plan goes far beyond basic test preparation.

You'll find that our CCPenX-Az exam questions frequently feature detailed scenarios and practical problem-solving exercises that directly mirror industry challenges. Engaging with these CCPenX-Az sample sets allows you to effectively manage your time and pace yourself, giving you the ability to finish any Certified Cloud Pentesting eXpert - Azure practice test comfortably within the allotted time.

Question # 1

You are reviewing Azure Activity Logs after a lab compromise. Which operation indicates that an attacker reset another user’s password through Microsoft Entra ID?

A.

Microsoft.Authorization/roleAssignments/write

B.

Update user / password profile modification

C.

Microsoft.Storage/storageAccounts/listKeys/action

D.

Microsoft.KeyVault/vaults/secrets/read

Question # 2

After gaining access to the Azure tenant, enumerate all resource groups available to the compromised user. One resource group contains the word prod. What is the name of that resource group?

Question # 3

A virtual machine has a system-assigned managed identity. From the VM shell, which Azure CLI command authenticates using that identity?

A.

az login --service-principal

B.

az login --identity

C.

az account get-access-token --tenant

D.

az ad signed-in-user show

Question # 4

Using the privileges of the previously compromised App Registration, explore the Azure environment to identify and access sensitive information. What is the final flag retrieved from the tenant?

Question # 5

Inside the public blob container, a file named backup-config.json contains service principal credentials. What field contains the App Registration client ID?

A.

tenantId

B.

clientSecret

C.

clientId

D.

objectId

Question # 6

During App Service enumeration, you discover that the compromised user can read App Service application settings. Find the hidden flag stored in the application settings.

Question # 7

Authenticate to Azure as a service principal using the credentials found in backup-config.json.

Question # 8

After authenticating as the service principal, enumerate its assigned Azure RBAC role. Which role does it have?

A.

Reader

B.

Contributor

C.

Storage Account Contributor

D.

Owner

Question # 9

The App Service has a system-assigned managed identity enabled. Identify the managed identity principal ID.