GCIH Question #459: Real Exam Question with Answer & Explanation

The correct answer is C: more. The Windows more command can be used to view the contents of a stream, but you'll need to know the stream's location and name to invoke the more command to view its data. dir with the right option would list file streams but not display or print their contents to the command shel

Web Application Attacks & Post-Exploitation

Question

Which Windows tool can be used to view the contents of the following file directly in the command shell? C:\Users\JaneD\funnyjokes.doc:file1

Options

Acp
Bdir
Cmore
Dnotepad

Explanation

The Windows more command can be used to view the contents of a stream, but you'll need to know the stream's location and name to invoke the more command to view its data. dir with the right option would list file streams but not display or print their contents to the command shell. The cp command can create streams, but is not used to view the contents. Notepad wouldn't be used from the command line to view the contents.

Topics

#alternate data streams#NTFS ADS#Windows file system#hidden file access

Community Discussion

No community discussion yet for this question.

Full GCIH Practice