nerdexam
GIAC

GCIH · Question #557

What is the penetration tester looking for in the following screenshot?

The correct answer is B. SWF objects hosted on the domain. The search is for flash objects, it is not complete as the bot activity is detected but it is for flash.

Reconnaissance, Scanning, and Enumeration

Question

What is the penetration tester looking for in the following screenshot?

Exhibit

GCIH question #557 exhibit

Options

  • AOpen SMTP relays
  • BSWF objects hosted on the domain
  • CJava objects for potential exploitation
  • DWeak authentication on a database

How the community answered

(23 responses)
  • A
    4% (1)
  • B
    70% (16)
  • C
    9% (2)
  • D
    17% (4)

Explanation

The search is for flash objects, it is not complete as the bot activity is detected but it is for flash.

Topics

#SWF objects#web reconnaissance#content discovery#Flash exploitation

Community Discussion

No community discussion yet for this question.

Full GCIH Practice