CompTIA PenTest+ (PT0-003) — Question 174

A penetration tester successfully gains access to a Linux system and then uses the following command:

find / -type f -ls > /tmp/recon.txt

Which of the following best describes the tester's goal?

Answer options

• A. Permission enumeration
• B. Secrets enumeration
• C. User enumeration
• D. Service enumeration

Correct answer: A

Explanation

The command run by the penetration tester is designed to list all files on the system along with their permissions, which is indicative of permission enumeration. The other options refer to different types of information gathering: secrets enumeration focuses on sensitive data, user enumeration targets user accounts, and service enumeration identifies running services.