nerdexam
ExamsPT0-001Questions#206
CompTIA

PT0-001 · Question #206

PT0-001 Question #206: Real Exam Question with Answer & Explanation

The correct answer is D: PowerShell. Post-exploitation refers to activities performed after initial compromise, and PowerShell is the most widely used native tool for this purpose due to its deep OS integration.

Question

Which of the following can be used for post-exploitation activities?

Options

  • AWinDbg
  • BIDA
  • CMaltego
  • DPowerShell

Explanation

Post-exploitation refers to activities performed after initial compromise, and PowerShell is the most widely used native tool for this purpose due to its deep OS integration.

Common mistakes.

  • A. WinDbg is a kernel and user-mode debugger used for software development and crash dump analysis, not for post-exploitation activities.
  • B. IDA is an interactive disassembler used for reverse engineering and malware analysis, not for conducting actions on a compromised host.
  • C. Maltego is an OSINT and reconnaissance tool used to map entity relationships during pre-exploitation phases, not post-exploitation.

Concept tested. Post-exploitation tools and PowerShell offensive use

Reference. https://attack.mitre.org/techniques/T1059/001/

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full PT0-001 Practice