nerdexam
ExamsGCIHQuestions#653
GIAC

GCIH · Question #653

GCIH Question #653: Real Exam Question with Answer & Explanation

The correct answer is B: A Netcat backpipe relay, receiving data on port 11111 and sending it to 10.1.1.10 port 54321.. See the full explanation below for the reasoning.

Question

An incident handler sees the following lines in the shell history of a user on a machine: mknod test p nc -l -p 11111 0<test | nc 10.1.1.10 54321 1>test What did this user implement?

Options

  • AA Netcat listener that executes the contents of the file named test.
  • BA Netcat backpipe relay, receiving data on port 11111 and sending it to 10.1.1.10 port 54321.
  • CA Netcat client that stores its output in a file named test.
  • DA Netcat backdoor with a destination port of 11111 and source port of 54321.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GCIH Practice