CompTIA
PT0-001 · Question #35
PT0-001 Question #35: Real Exam Question with Answer & Explanation
The correct answer is A: From the remote computer, run the following commands:. To forward a graphical window from a remote compromised host to a local display, the tester must run two commands on the remote machine to configure and launch the X11 session.
Post-exploitation and lateral movement
Question
A penetration tester wants to launch a graphic console window from a remotely compromised host with IP 10.0.0.20 and display the terminal on the local computer with IP 192.168.1.10. Which of the following would accomplish this task?
Options
- AFrom the remote computer, run the following commands:
- BFrom the local computer, run the following command:
- CFrom the remote computer, run the following command:
- DFrom the local computer, run the following command:
Explanation
To forward a graphical window from a remote compromised host to a local display, the tester must run two commands on the remote machine to configure and launch the X11 session.
Common mistakes.
- B. A single command from the local computer cannot instruct the remote host to redirect its graphical output back - the remote machine must be configured to send its display to the local X server.
- C. A single command from the remote machine is insufficient because X11 forwarding requires at minimum setting the DISPLAY variable and then separately launching the graphical application as two distinct steps.
- D. A single command from the local computer cannot both reach the remote host and redirect its graphical output; display redirection must be configured from the remote side where the application will run.
Concept tested. X11 display forwarding from compromised remote host
Reference. https://www.x.org/wiki/UserDocumentation/GettingStarted/
Topics
#X11 forwarding#SSH tunneling#remote GUI access#lateral movement
Community Discussion
No community discussion yet for this question.