Great News!
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
Many students who study using our platform have reported that a large number of the practice questions here are very similar to those that appear in real exams. View Courses
A penetration tester obtained root access on a Windows server and, according to the rules of engagement, is permitted to perform post-exploitation for persistence. Which of the following techniques would BEST support this?
Correct Answer: B. Creating a backdoor
The best technique to ensure persistence after gaining root access on a Windows server is to create a backdoor. A backdoor allows the penetration tester to maintain access to the server even after it is rebooted, patched, or otherwise altered. The tester might do this by installing remote access tools, adding a new user with administrative privileges, creating a scheduled task, or modifying the registry to ensure that malicious code runs on startup.
Why other options are incorrect:
Configuring systemd services to run automatically at startup:
This option is applicable to Linux systems, not Windows. On a Linux server, systemd services can be configured to run at startup for persistence, but this is irrelevant to a Windows environment. Windows uses different methods, such as modifying the registry or creating scheduled tasks, to ensure persistence.
Exploiting an arbitrary code execution exploit:
This technique is typically used for initial exploitation or privilege escalation, not for persistence. After the tester already has root access, they don't need to exploit vulnerabilities again; instead, they need to ensure they can maintain access. Exploiting a code execution vulnerability would likely only work once and would not maintain persistence.
Moving laterally to a more authoritative server/service:
Lateral movement refers to the process of moving from one compromised system to another within the network. While this might be part of a broader attack strategy, it does not contribute to maintaining access to the current server. The goal here is persistence on the current system, not expanding the attack to other servers.
No Payment Cards Needed
Discover a range of courses designed to provide you with the knowledge and skills needed to excel in your chosen field.
You don’t need one month to study and pass your test.
With Prepsaret, it takes you a few days to grasp all the concepts needed to pass your exams
