Q. What does WMI stand for, and what capabilities does it offer for penetration testers?

View solution

Q. What is the purpose of fileless malware in penetration testing?

View solution

Q. What is the concept of "living off the land" in penetration testing?

View solution

Q. How can a scheduled task be created to run the calculator application once a day at 8:00 a.m. on a Windows system using the command line?

View solution

Q. How does cron work on Linux or Unix systems for scheduling tasks?

View solution

Q. What is the purpose of using a "call home" script in scheduled tasks?

View solution

Q. What is the primary function of Responder in the context of SMB services?

View solution

Q. What protocol is used by SMB for file-sharing, authentication, authorization, and print services?

View solution

Q. What is the primary purpose of SecureAuth’s Impacket toolset?

View solution

Q. Which Impacket tool replicates the functionality of PsExec in Python?

View solution

Q. What is the objective of pass-the-hash attacks in penetration testing?

View solution

Q. How can mitm6 be used in a DNS attack?

View solution

Q. What does LSASS.exe stand for in the context of pass-the-hash attacks?

View solution

Q. Which port is commonly associated with Windows Remote Desktop Protocol (RDP)?

View solution

Q. In the context of Apple's Remote Desktop (ARD), how do penetration testers often use ARD?

View solution

Q. What is the primary advantage of VNC as a remote desktop tool in penetration testing?

View solution

Q. How does DNS attack tool mitm6 exploit a Windows DNS server?

View solution

Q. What is a potential disadvantage of using fileless malware in penetration testing?

View solution

Q. How can a penetration tester schedule a task on a Windows system using the command line?

View solution

Q. What is one common method of exploiting SSH vulnerabilities?

View solution