CompTIA PenTest+ (PT0-003) — Question 37

During an assessment, a penetration tester obtains a low-privilege shell and then runs the following command: findstr /SIM /C:"pass” *.txt *.cfg *.xml
Which of the following is the penetration tester trying to enumerate?

Answer options

• A. Configuration files
• B. Permissions
• C. Virtual hosts
• D. Secrets

Correct answer: D

Explanation

The command is searching for the string 'pass' within text, configuration, and XML files, indicating the tester is looking for sensitive information such as passwords or secrets. The other options do not pertain to searching for specific text within files, making them incorrect in this context.