eJPT - eLearnSecurity Junior Penetration Tester Exploitation with Metasploit Questions and Answers

Question 1

A penetration tester has identified a vulnerable service on a target at 192.168.10.100. They select an appropriate exploit in Metasploit and need to configure a reverse TCP payload to connect back to their attacking machine at 192.168.10.5. Which Metasploit option must be set to the IP address of the tester's machine?

Accepted Answer

LHOST

Answer

LHOST (Local Host) is the Metasploit variable used to specify the IP address of the attacking machine. When a reverse payload is used, it tells the compromised target where to connect back to. RHOSTS (Remote Hosts) is used to specify the target's IP address.

Question 2

Which of the following Metasploit module types is specifically designed to perform actions such as gathering evidence, escalating privileges, or pivoting on a target system *after* an initial exploit has already succeeded and a session has been established?

Accepted Answer

post

Answer

Post-exploitation (post) modules are used after a system has been successfully compromised. They are not used for the initial exploit but for subsequent actions like data exfiltration, maintaining access, and lateral movement within the network.

Question 3

A penetration tester is attacking a target that is located behind a restrictive firewall. The firewall blocks all incoming connections but allows outbound connections to the internet on common ports like 80 and 443. Which type of payload would be most effective for establishing a session?

Accepted Answer

Reverse

Answer

A reverse shell (or payload) makes the compromised target initiate an outbound connection back to the attacker's listening machine. This is highly effective at bypassing firewalls that prevent inbound connections, as most firewalls permit outbound traffic. A bind shell would open a port on the target, which the firewall would block.

Question 4

After loading an exploit module in `msfconsole` using the `use` command, a junior tester needs to determine which parameters, such as RHOSTS and LHOST, are required and what their current values are. Which command should they run next?

Accepted Answer

show options

Answer

The `show options` command displays all the configurable parameters for the currently selected module. It clearly lists each option, whether it is required, and its current setting, allowing the tester to configure the exploit correctly before execution.

Question 5

After gaining a Meterpreter session on a Windows machine, a penetration tester notices the session is running within an unstable process that the user might close. To ensure the session's stability and persistence, they want to move it to a more stable system process, like `explorer.exe`. Which Meterpreter command should be used to accomplish this?

Accepted Answer

migrate

Answer

The `migrate` command is used within a Meterpreter session to inject the session into a different running process on the target host. This is a crucial post-exploitation step for maintaining access and evading detection by moving out of a potentially short-lived process into a more stable one.

eJPT - eLearnSecurity Junior Penetration Tester Practice Test

eJPT - eLearnSecurity Junior Penetration Tester Practice Test

eJPT - eLearnSecurity Junior Penetration Tester Exploitation with Metasploit Questions and Answers