Post-Exploitation — CompTIA PenTest+ (PT0-002) Practice Questions
Post-exploitation refers to the activities a tester performs after gaining initial access to a system, including privilege escalation, lateral movement, credential harvesting, and persistence establishment. PT0-002 heavily emphasizes this phase because it demonstrates the true business impact of a compromise beyond simply getting a foothold. Candidates are expected to know common post-exploitation tools and techniques, as well as how to document findings in a way that communicates risk to stakeholders.
Free questions on post-exploitation
A tester uses the Metasploit framework to generate a reverse shell payload. The payload is executed on a target system. What is the primary purpose of a reverse shell?
Free question · medium · full answer + explanation
More post-exploitation questions in the full bank
- What is persistence via Registry modifications in Windows systems? Unlock answer & explanation →
- What is a reverse shell? Unlock answer & explanation →
- How should a post-exploitation persistence plan be documented? Unlock answer & explanation →