CompTIA PenTest+ (PT0-001) — Question 119

A penetration tester successfully exploits a system, receiving a reverse shell. Which of the following is a Meterpreter command that is used to harvest locally stored credentials?

Answer options

• A. background
• B. hashdump
• C. session
• D. getuid
• E. psexec

Correct answer: B

Explanation

The correct answer is B, 'hashdump', which is specifically designed to extract password hashes from the target system. The other options serve different purposes: A (background) manages sessions, C (session) interacts with active sessions, D (getuid) retrieves the user ID of the current session, and E (psexec) is used to execute commands on a remote system.