GIAC Penetration Tester (GPEN) — Question 7

A penetration tester obtains telnet access to a target machine using a captured credential. While trying to transfer her exploit to the target machine, the network intrusion detection systems keeps detecting her exploit and terminating her connection. Which of the following actions will help the penetration tester transfer an exploit and compile it in the target system?

Answer options

• A. Use the http service's PUT command to push the file onto the target machine.
• B. Use the scp service, protocol SSHv2 to pull the file onto the target machine.
• C. Use the telnet service's ECHO option to pull the file onto the target machine
• D. Use the ftp service in passive mode to push the file onto the target machine.

Correct answer: D

Explanation

The correct answer is D because using FTP in passive mode can help bypass some network intrusion detection systems by establishing a connection that is less likely to be flagged. Options A and C are not suitable as they do not provide an effective method for transferring files under these circumstances, and option B relies on SSH, which may not be available or suitable in this scenario.