GIAC Red Team Professional - GRTP Exam Practice Test

In the context of privilege escalation on a Linux system, what is the significance of the SUID bit?
Response:
Correct Answer: D Vote an answer
Which attributes are commonly targeted during privilege escalation in Active Directory attacks?
(Choose two)
Response:
Correct Answer: B,D Vote an answer
In the context of adversary emulation, what does TTP stand for?
Response:
Correct Answer: C Vote an answer
Which Linux file contains user privilege information that is crucial for an attacker to understand the privilege landscape of the system?
Response:
Correct Answer: D Vote an answer
What is the purpose of performing Pass-the-Hash (PtH) attacks in a domain environment?
Response:
Correct Answer: B Vote an answer
What should be included in the red team's engagement report?
(Choose two)
Response:
Correct Answer: A,C Vote an answer
In the context of delivering a malicious payload, what does 'spear phishing' refer to?
Response:
Correct Answer: D Vote an answer
Which pieces of information are crucial when performing network discovery?
Multiple Correct Answers
Response:
Correct Answer: B,C,D Vote an answer
Which tool is known for its extensive use in post-exploitation scenarios within a C2 context?
Response:
Correct Answer: C Vote an answer
What are effective methods for staging data for exfiltration?
Multiple Correct Answers
Response:
Correct Answer: A,B Vote an answer
How can an attacker leverage scheduled tasks for persistence?
Response:
Correct Answer: D Vote an answer
What tool is typically used to perform a Pass-the-Ticket attack in an Active Directory environment?
Response:
Correct Answer: B Vote an answer
What tool is typically used to perform a Pass-the-Ticket attack in an Active Directory environment?
Response:
Correct Answer: B Vote an answer
Which entities benefit the most from adversary emulation exercises?
Multiple Correct Answers
Response:
Correct Answer: A,C Vote an answer