GIAC Penetration Tester (GPEN) — Question 5

Which Metasploitvncinject stager will allow VNC communications from the attacker to a listening port of the attacker's choosing on the victim machine?

Answer options

• A. Vncinject/find.lag
• B. Vncinject/reverse.tcp
• C. Vncinject/reverse-http
• D. Vncinject /bind.tcp

Correct answer: B

Explanation

The correct answer is B, Vncinject/reverse.tcp, because it sets up a reverse TCP connection allowing the attacker to communicate with the victim's machine. The other options do not facilitate this type of communication; for instance, A and C are not designed for direct VNC access, while D sets up a bind shell instead of a reverse connection.