Q. What is the primary purpose of Nmap in the context of network attacks?

View solution

Q. Which tool is often called a network Swiss army knife and can be used for purposes such as port scanning and creating a reverse shell?

View solution

Q. What port does SNMP commonly operate on?

View solution

Q. What is one of the first steps for SNMP exploitation?

View solution

Q. Which version of SNMP is functionally equivalent to SNMP v2 but adds additional security capabilities to provide confidentiality, integrity, and authentication?

View solution

Q. What protocol is commonly used for sending emails, operates on TCP port 25, and can be easily identified by telnetting to the service port?

View solution

Q. Which command can be used for information gathering on an SMTP server by connecting to it and using the EXPN and VRFY commands?

View solution

Q. Which protocol has been around since 1971, remains a plaintext, unencrypted protocol operating on TCP port 21, and can be exploited by capturing usernames and passwords on the wire?

View solution

Q. What is one potential avenue for FTP service exploitation?

View solution

Q. What is Kerberoasting?

View solution

Q. Why is Kerberoasting most effective against shorter, less complex passwords?

View solution

Q. What is the purpose of the Kerberoasting toolkit?

View solution

Q. How many steps are involved in the Kerberoasting process?

View solution

Q. What is the purpose of kirbi2john.py in Kerberoasting?

View solution

Q. What does the SambaCry exploit target?

View solution

Q. Why is fingerprinting the operating system important before attempting an Samba exploit?

View solution

Q. What is the purpose of Secure Shell (SSH)?

View solution

Q. Why is attacking systems with SSH services attractive for penetration testers?

View solution

Q. How can penetration testers validate SSH vulnerabilities in an organization?

View solution

Q. What is the purpose of THC Hydra in SSH attacks?

View solution