What procedure should be deployed to protect the network against lateral movement? Database backups VPNs Strong passwords for user accounts VLANs Explanation & Hint: Lateral movement involves scanning a network…
After compromising a system during a penetration testing engagement, all penetration work should be cleaned up, including extra files, system changes, and modified logs. The media sanitation methodology should be…
What task can be accomplished with the steghide tool? to modify Windows registry values and to connect a compromised system to another system to find complex attack paths in Microsoft…
What kind of malicious activity is performed by a lower-privileged user who accesses functions reserved for higher-privileged users? horizontal privilege escalation steganography bind shell vertical privilege escalation Explanation & Hint:…
An attacker wants to allow further connections to a compromised system and maintain persistent access. The attacker uses the Windows system command Enable-PSRemoting -SkipNetworkProfileCheck - Force. What tool is being…
Which three tools are living-off-the-land post-exploitation techniques? (Choose three.) Twittor PowerSploit Socat WMImplant WinRM Empire Explanation & Hint: Some examples of living-off-the-land post-exploitation techniques are Empire, WMI, BloodHound, PowerShell, Sysinternals,…
Which Sysinternals tool is used by penetration testers to modify Windows registry values and connect a compromised system to another system? PsInfo PsLoggedOn PsGetSid PsExec Explanation & Hint: PsExec is…
Which utility can be used to write scripts or applications to automate administrative tasks on remote computers and can also be used by malware to perform different activities in a…
Which resource is a single-page JavaScript web application that can be used to find complex attack paths in Microsoft Azure? Empire Netcat BloodHound Sysinternals Explanation & Hint: BloodHound is a…
Which resource is an open-source framework that allows rapid deployment of post-exploitation modules, including keyloggers, bind and reverse shells, and adaptable communication to evade detection? BloodHound Sysinternals WMI Empire Explanation…
Which living-off-the-land post-exploitation technique can get directory listings, copy and move files, get a list of running processes, and perform administrative tasks? PowerShell Sysinternals WMI BloodHound Explanation & Hint: PowerShell…
What kind of channel is created by a C2 with a system that has been compromised? wireless channel encrypted channel covert channel command channel Explanation & Hint: A C2 creates…
Which two resources are C2 utilities? (Choose two.) Socat Empire BloodHound Netcat Twittor Explanation & Hint: Many different utilities can be used to create a C2, such as socat, a…
Which Meterpreter command is used to execute Meterpreter commands that are listed inside a text file and also to help accelerate the actions taken on the victim system? search execute…
A cybersecurity student is learning about Netcat commands that could be used in a penetration testing engagement. Which Netcat command is used to connect to a TCP port? nc -nv <IP…
Which resource is a lightweight and portable tool that allows the creation of bind and reverse shells from a compromised host? WMImplant WSC2 BloodHound Netcat Explanation & Hint: Many tools…
Refer to the exhibit. An attacker opens a port or a listener on the compromised system and waits for a connection. The goal is to connect to the victim from…
Which resource is a Windows utility that combines the old CMD functionality with a new scripting/cmdlet instruction set with built-in system administration functionality? Socat Wsc2 PowerShell Twittor Explanation & Hint:…
Which tool is an open-source container vulnerability scanner that can be used to find vulnerabilities in a Docker image? Anchore’s Grype GATTacker Social-Engineer Toolkit (SET) Nimbostratus Explanation & Hint: Anchore’s…
Which tool can be used to perform on-path attacks in BLE implementations? GATTacker Social-Engineer Toolkit (SET) Nimbostratus Dagda Explanation & Hint: Tools such as GATTacker can be used to perform…