Multiple Choice
During the exploitation phase of a penetration test, a vulnerability is discovered that allows command execution on a Linux web server. A cursory review confirms the system access is only in a low-privilege user context: www-data . After reviewing, the following output from /etc/sudoers: 
Which of the following users should be targeted for privilege escalation?
A) Only members of the Linux admin group, OPERATORS, ADMINS, jedwards, and operator can execute privileged commands useful for privilege escalation.
B) All users on the machine can execute privileged commands useful for privilege escalation.
C) Bfranks, emann, members of the Linux admin group, OPERATORS, and ADMINS can execute commands useful for privilege escalation.
D) Jedwards, operator, bfranks, emann, OPERATOR, and ADMINS can execute commands useful for privilege escalation.
Correct Answer:
Verified
Correct Answer:
Verified
Q120: A penetration tester is performing ARP spoofing
Q121: Which of the following situations would cause
Q122: A penetration tester notices that the X-Frame-Options
Q123: A penetration tester delivers a web application
Q124: Which of the following tools would a
Q126: A penetration tester was able to retrieve
Q127: After performing a security assessment for a
Q128: A penetration tester is performing a black
Q129: Which of the following tools is used
Q130: A company hires a penetration tester to