Post-Exploitation and Lateral Movement Questions
Practice questions for Post-Exploitation and Lateral Movement topic in CompTIA PenTest+. 14 questions covering this domain.
Which term describes the technique of maintaining access to a compromised system across reboots or credential changes, such as adding a backdoor user ...
A penetration tester has compromised a host within a target network and wants to access an internal web application on a segment not directly reachabl...
A penetration tester has compromised a Windows workstation in a domain environment and wants to move laterally to a domain controller. The tester has ...
After completing a penetration test, a tester is in the cleanup phase and wants to remove all artifacts left on compromised systems. Which artifact ty...
During the post-exploitation phase, a penetration tester documents all commands executed, files accessed, and credentials obtained. What is the PRIMAR...
After compromising a Linux web server, a penetration tester wants to establish persistence without creating a new user account. Which technique would ...
A penetration tester has gained access to a Windows domain environment and uses BloodHound to analyze Active Directory. BloodHound identifies a path f...
During a penetration test, a tester has access to a host in a DMZ network. The tester wants to reach an internal database server in a separate network...
A penetration tester has Domain Admin access and wants to create a persistence mechanism that survives domain controller restarts and is difficult to ...
Which term describes the process of using a compromised system to gain access to other systems within the same network, expanding the penetration test...
A penetration tester has completed a long-term red team engagement and must now remove all tools, backdoors, and artifacts from compromised systems. T...
A penetration tester has gained access to a Linux system and wants to maintain persistence using a cron job. Which entry in the crontab would execute ...
During post-exploitation, a penetration tester wants to understand what network shares and resources are accessible from a compromised Windows system....
A penetration tester has achieved Domain Admin access during an engagement and performs a DCSync attack. What does the DCSync attack simulate, and wha...
Sign in to see all 14 questions
Create a free account to browse all questions — completely free during our launch phase.