CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
Comptia Pentest+ 2023 Questions and answer - Part 37
1. A connection would be established by which of the following uses of SSH that would serve as a network proxy for application layer? Suppose the victim-s IP to be 10. 2.3 and the attacker-s IP to be 10. 2.2.
A) ssh 10. 2.2 -R 8800:127.0.0.1:8080
B) ssh -D 8888 root@10. 2.3
C) ssh root@10. 2.3
D) ssh 10. 2.2 -L 8800:10. 2.2:80
2. According to the proxy connection described in the previous question, for a given application, the proxying of all network traffic across the SSH tunnel is facilitated by using which of the following tools?
A) Ncat
B) Proxychains
C) Burp Suite
D) OWASP ZAP
3. An attacker is allowed to instantly re-establish encrypted communications with a target Linux system with minimal effort using which one of the following techniques?
A) A bound shell is set up via netcat or ncat in the command prompt and sent to the background
B) Daily at noon, a netcat reverse shell is sent back to the attacker by configuring a cron job
C) The attacking system-s public SSH key is installed into the target system. ssh/authorized_keys of the user
D) A bound netcat shell is included by altering an existing start-up script in /etc/init.d any time the target system boots the availability of a shell ensured
4. Which tool was originally developed by University of Maryland and is a static code analyzer focused exclusively on Java language?
A) YASCA
B) Findbugs
C) AFL
D) DynamoRIO
5. Select the achieving persistence method that relies on injecting malicious code into an existing application on the target system, that exploits the trust of an authorized user for that application?
A) New User Creation
B) Daemon-based
C) Scheduled Task Creation
D) Trojan
A) ssh 10. 2.2 -R 8800:127.0.0.1:8080
B) ssh -D 8888 root@10. 2.3
C) ssh root@10. 2.3
D) ssh 10. 2.2 -L 8800:10. 2.2:80
2. According to the proxy connection described in the previous question, for a given application, the proxying of all network traffic across the SSH tunnel is facilitated by using which of the following tools?
A) Ncat
B) Proxychains
C) Burp Suite
D) OWASP ZAP
3. An attacker is allowed to instantly re-establish encrypted communications with a target Linux system with minimal effort using which one of the following techniques?
A) A bound shell is set up via netcat or ncat in the command prompt and sent to the background
B) Daily at noon, a netcat reverse shell is sent back to the attacker by configuring a cron job
C) The attacking system-s public SSH key is installed into the target system. ssh/authorized_keys of the user
D) A bound netcat shell is included by altering an existing start-up script in /etc/init.d any time the target system boots the availability of a shell ensured
4. Which tool was originally developed by University of Maryland and is a static code analyzer focused exclusively on Java language?
A) YASCA
B) Findbugs
C) AFL
D) DynamoRIO
5. Select the achieving persistence method that relies on injecting malicious code into an existing application on the target system, that exploits the trust of an authorized user for that application?
A) New User Creation
B) Daemon-based
C) Scheduled Task Creation
D) Trojan
1. Right Answer: B
Explanation: The described tool is searchsploit. Searchsploit and its finer details should be of closer familiarization to Penetration testers as the ability to rapidly search for, identify and obtain exploit code is of great concern in a penetration test.
2. Right Answer: B
Explanation: A dynamic proxy is established by using the -D flag in SSH; all of the network traffic of a penetration tester through port 8888 is proxied. Commands are run against systems that may be visible from the system but not from the attacker-s system. Much of a penetration tester-s ability is facilitated by this immensely powerful tool to pivot through networks and move deeper into a target organization-s network.
3. Right Answer: C
Explanation: A penetration tester is enabled to proxy all network traffic by Proxychains through an established SOCKS proxy, like creating via SSH tunneling with the -D command.
4. Right Answer: B
Explanation: A simple and effective way to ensure persistence of connectivity is by installing a public SSH key in a user-s authorized keys file, after a target system is compromised. By using SSH as a connection protocol, it is guaranteed that a penetration tester-s traffic is not only encrypted but also blends in with other legitimate users. In this process, a netcat listener is bound to port 4444.
5. Right Answer: D
Explanation: Findbugs is a described tool that is currently known as Spotbugs. The University of Maryland developed Findbugs as a static code analyzer for Java applications, specifically. The spiritual successor of Findbugs, Spotbugs, can be taken to be a deprecated product updated in 2015. Spotbugs is in current development and has a very robust community in place.
Explanation: The described tool is searchsploit. Searchsploit and its finer details should be of closer familiarization to Penetration testers as the ability to rapidly search for, identify and obtain exploit code is of great concern in a penetration test.
2. Right Answer: B
Explanation: A dynamic proxy is established by using the -D flag in SSH; all of the network traffic of a penetration tester through port 8888 is proxied. Commands are run against systems that may be visible from the system but not from the attacker-s system. Much of a penetration tester-s ability is facilitated by this immensely powerful tool to pivot through networks and move deeper into a target organization-s network.
3. Right Answer: C
Explanation: A penetration tester is enabled to proxy all network traffic by Proxychains through an established SOCKS proxy, like creating via SSH tunneling with the -D command.
4. Right Answer: B
Explanation: A simple and effective way to ensure persistence of connectivity is by installing a public SSH key in a user-s authorized keys file, after a target system is compromised. By using SSH as a connection protocol, it is guaranteed that a penetration tester-s traffic is not only encrypted but also blends in with other legitimate users. In this process, a netcat listener is bound to port 4444.
5. Right Answer: D
Explanation: Findbugs is a described tool that is currently known as Spotbugs. The University of Maryland developed Findbugs as a static code analyzer for Java applications, specifically. The spiritual successor of Findbugs, Spotbugs, can be taken to be a deprecated product updated in 2015. Spotbugs is in current development and has a very robust community in place.
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment