GIAC Certified Incident Handler (GCIH) — Question 55

When probing for command injection opportunities on a remote host, why would an attacker target her own address space from the remote host?

Answer options

• A. Collection of URL session tokens
• B. Legal requirement
• C. Verification of a blind attack
• D. Detect target's operating system

Correct answer: D

Explanation

The correct answer is D because targeting their own address space can help the attacker determine how the command is executed on the target's operating system. The other options do not directly relate to the purpose of probing for command injection opportunities, as they focus on different aspects of an attack or legal considerations.