nerdexam
GIAC

GCIH · Question #455

Which of the following can be done using Covert_TCP's built in functionality?

The correct answer is B. Sending a list of password hashes from one machine to another. Covert_TCP is limited to passing ASCII data (e.g. a list of password hashes) from one machine to another by embedding the data in TCP or IP header fields. That is it. As a proof-of-concept tool it has no additional features, although some folks imagine if could someday be used to

Web Application Attacks & Post-Exploitation

Question

Which of the following can be done using Covert_TCP's built in functionality?

Options

  • AExecuting commands on a remote host
  • BSending a list of password hashes from one machine to another
  • CMasking the source of a DoS attack

How the community answered

(24 responses)
  • B
    96% (23)
  • C
    4% (1)

Explanation

Covert_TCP is limited to passing ASCII data (e.g. a list of password hashes) from one machine to another by embedding the data in TCP or IP header fields. That is it. As a proof-of-concept tool it has no additional features, although some folks imagine if could someday be used to test additional attack types.

Topics

#Covert_TCP#covert channels#data exfiltration#TCP header steganography

Community Discussion

No community discussion yet for this question.

Full GCIH Practice