Q. What is the objective of pass-the-hash attacks in penetration testing?

View solution

Q. How can mitm6 be used in a DNS attack?

View solution

Q. What does LSASS.exe stand for in the context of pass-the-hash attacks?

View solution

Q. Which port is commonly associated with Windows Remote Desktop Protocol (RDP)?

View solution

Q. In the context of Apple's Remote Desktop (ARD), how do penetration testers often use ARD?

View solution

Q. What is the primary advantage of VNC as a remote desktop tool in penetration testing?

View solution

Q. How does DNS attack tool mitm6 exploit a Windows DNS server?

View solution

Q. What is a potential disadvantage of using fileless malware in penetration testing?

View solution

Q. How can a penetration tester schedule a task on a Windows system using the command line?

View solution

Q. What is one common method of exploiting SSH vulnerabilities?

View solution

Q. How can long-term access to systems be achieved by exploiting SSH keys?

View solution

Q. What is the primary focus of testing network segmentation in the context of penetration testing?

View solution

Q. What is a method used by tools allowing VLAN hopping?

View solution

Q. What is the purpose of tools like TruffleHog in the context of penetration testing?

View solution

Q. Where are unintentionally exposed secret keys frequently found?

View solution

Q. What is the primary purpose of post-exploit attacks in penetration testing?

View solution

Q. What is the primary purpose of dictionary attacks in penetration testing?

View solution

Q. What is a common technique in password cracking when targeting a specific organization?

View solution

Q. What is the purpose of rainbow tables in password cracking?

View solution

Q. When might cross-compiling be used in penetration testing?

View solution