CompTIA Security+ (SY0-501) — Question 789

Which of the following penetration testing concepts is an attacker MOST interested in when placing the path of a malicious file in the Windows/
CurrentVersion/Run registry key?

Answer options

• A. Persistence
• B. Pivoting
• C. Active reconnaissance
• D. Escalation of privilege

Correct answer: D

Explanation

The correct answer is D, as placing a malicious file in the Windows/CurrentVersion/Run registry key enables the attacker to gain elevated access every time the system starts, thus achieving escalation of privilege. Options A, B, and C do not directly relate to the act of ensuring a malicious file runs automatically at startup, which is primarily about maintaining access rather than initially escalating privileges.