CompTIACompTIA
PT0-002 · Question #414
PT0-002 Question #414: Real Exam Question with Answer & Explanation
Sign in or unlock PT0-002 to reveal the answer and full explanation for question #414. The question stem and answer options stay visible for context.
Post-exploitation and lateral movement
Question
A penetration tester issues the following command after obtaining a low-privilege reverse shell: wmic service get name,pathname,startmode Which of the following is the most likely reason the penetration tester ran this command?
Options
- ATo search for passwords in the service directory
- BTo list scheduled tasks that may be exploitable
- CTo register a service to run as System
- DTo find services that have unquoted service paths
Unlock PT0-002 to see the answer
You've previewed enough free PT0-002 questions. Unlock PT0-002 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#Privilege Escalation#Unquoted Service Paths#Windows Services#WMIC