eJPT - eLearnSecurity Junior Penetration Tester Exploitation with Metasploit Questions and Answers

Question 1

A penetration tester has identified a vulnerable service on a target at 192.168.10.100.
They select an appropriate exploit in Metasploit and need to configure a reverse TCP payload to connect back to their attacking machine at 192.168.10.5.
Which Metasploit option must be set to the IP address of the tester's machine?

Accepted Answer

LHOST

Answer

RHOSTS

Answer

SRVHOST

Answer

PAYLOAD

Question 2

Which of the following Metasploit module types is specifically designed to perform actions such as gathering evidence, escalating privileges, or pivoting on a target system *after* an initial exploit has already succeeded and a session has been established?

Accepted Answer

post

Answer

exploit

Answer

auxiliary

Answer

payload

Question 3

A penetration tester is attacking a target that is located behind a restrictive firewall. The firewall blocks all incoming connections but allows outbound connections to the internet on common ports like 80 and 443. Which type of payload would be most effective for establishing a session?

Accepted Answer

Reverse

Answer

Bind

Answer

PassiveX

Answer

Stageless

Question 4

After loading an exploit module in `msfconsole` using the `use` command, a junior tester needs to determine which parameters, such as RHOSTS and LHOST, are required and what their current values are. Which command should they run next?

Accepted Answer

show options

Answer

info

Answer

search

Answer

check

Question 5

After gaining a Meterpreter session on a Windows machine, a penetration tester notices the session is running within an unstable process that the user might close. To ensure the session's stability and persistence, they want to move it to a more stable system process, like `explorer.exe`. Which Meterpreter command should be used to accomplish this?

Accepted Answer

migrate

Answer

ps

Answer

getsystem

Answer

shell

Question 6

What is a key characteristic of a stageless payload (e.g., `windows/meterpreter_reverse_tcp`) when compared to a staged payload (e.g., `windows/meterpreter/reverse_tcp`) in Metasploit?

Accepted Answer

It sends the entire payload in one connection, making it more reliable on unstable networks.

Answer

It is significantly smaller in size.

Answer

It requires a separate handler to download the main payload.

Answer

It is always encrypted by default.