A tester uses the Metasploit framework to generate a reverse shell payload. The payload is executed on a target system. What is the primary purpose of a reverse shell?

Correct answer: To provide the attacker with interactive command execution access to the target

Option A is correct because a reverse shell establishes an outbound connection from the target back to the attacker's listening machine, giving the attacker an interactive command prompt on the target system that can be used to run commands, navigate the filesystem, exfiltrate data, or pivot further into the network. Option B is incorrect because scanning for open ports is performed by reconnaissance tools such as network scanners during pre-exploitation; a reverse shell is a post-exploitation capability, not a scanning tool. Option C is incorrect because identifying unpatched systems is a vulnerability assessment activity using tools like patch management consoles or vulnerability scanners, not a function of a reverse shell payload. Option D is incorrect because enumerating running services is typically done during the reconnaissance or scanning phase using appropriate enumeration tools, prior to exploitation; a reverse shell is the result of exploitation, not a scanning mechanism.