TryHackMe: Pentest Questionaire — Write-Up

Figure 1.1

Hi,

This article is about Pentest Questionaire room created MeSeth6797 by on TryHackMe.

Description: This room contains questions related to Penetration Testing.

This room increases your knowledge level with some questions which are usually asked in an interview. This is free room and everyone can join it. Le’s get Started,

Q1: A very popular port scanner used in assessments?

Answer: NMAP

Q2: Flag used to load a list of hosts?

Answer: -IL

Q3: Command line vulnerability scanner?

Answer: NIKTO

Q4: Popular packet analyzer tool having a GUI?

Answer: WIRESHARK

Q5: Online platform to search for exploits?

Answer: EXPLOIT-DB

Q6: First phase of the penetration test?

Answer: RECONNAISSANCE

Q7: Common penetration testing framework used across multiple platforms?

Answer: METASPLOIT

Q8: A vulnerability assessment framework developed by Tenable?

Answer: NESSUS

Q9: Automated tool to exploit SQL Injections?

Answer: SQLMAP

Q10: Vulnerability which when exploited can send commands to the operating system?

Answer: OS INJECTION

Q11: A vulnerability which pops an alert box?

Answer: XSS

Q12: You do it horizontally and laterally?

Answer: PRIVILEGE ESCALATION

Q13: Windows SMB exploit?

Answer: ETERNALBLUE

Q14: Vulnerability by which the attacker can include local files(short name)?

Answer: LFI

Q15: Vulnerability by which the attacker can include remote files(short name)?

Answer: RFI

All of the answers are exactly same but they won’t work in above mentioned case. Hint is the word case.

Hurrah! We have completed this Pentest Questionaire Challenge. Thanks for staying till here.

If you like this article, then please support on Patreon. So that I keep writing articles like these.