⚔️ Attacks and Exploits - PENTEST Practice Questions

Execute network, application, wireless, social engineering, and physical attacks during penetration tests.

7Questions Available
2Exam Domains

Practice Attacks & Exploits Questions Now

Start a timed practice session focusing on Attacks and Exploits topics from the PENTEST question bank.

Start PENTEST Practice Quiz →

PENTEST Attacks & Exploits Question Bank (7 Questions)

Browse all 7 practice questions covering Attacks and Exploits for the PENTEST certification exam. Answers are intentionally hidden on this page so you can self-test first before checking results in quiz mode.

  1. Question 1Attacks & Exploits

    A penetration tester has discovered a vulnerable service on the target. Which Metasploit command is used to configure and launch an exploit against the target?

    Asearch
    Buse <exploit> followed by set options and run
    Cdb_nmap
    Dsessions -l

    Answer hidden for practice.

    Use the interactive quiz to reveal the correct answer and explanation.

    Start PENTEST Quiz
  2. Question 2Attacks & Exploits

    A penetration tester has gained a low-privilege shell on a Linux system. They discover a SUID binary owned by root that is vulnerable to a buffer overflow. What can this lead to?

    ADenial of service only
    BPrivilege escalation to root because SUID binaries run with the owner's permissions
    CNetwork packet capture
    DDNS cache poisoning

    Answer hidden for practice.

    Use the interactive quiz to reveal the correct answer and explanation.

    Start PENTEST Quiz
  3. Question 3Attacks & Exploits

    A penetration tester on a Linux system runs `sudo -l` and discovers they can execute `/usr/bin/vim` as root without a password. How can this be exploited for privilege escalation?

    AVim cannot be used for privilege escalation
    BThe tester can spawn a root shell from within vim by running `:!bash` or `:shell`
    CThe tester must first crack the root password
    DThe tester needs to modify the sudoers file first

    Answer hidden for practice.

    Use the interactive quiz to reveal the correct answer and explanation.

    Start PENTEST Quiz
  4. Question 4Attacks & Exploits

    On a Windows system, a penetration tester discovers they have SeImpersonatePrivilege. Which exploitation technique can leverage this?

    ADLL injection
    BPotato family attacks (JuicyPotato, PrintSpoofer, GodPotato) to escalate to SYSTEM
    CARP spoofing
    DDNS tunneling

    Answer hidden for practice.

    Use the interactive quiz to reveal the correct answer and explanation.

    Start PENTEST Quiz
  5. Question 5Attacks & Exploits

    A penetration tester finds that a buffer overflow vulnerability exists in a network service but DEP (Data Execution Prevention) is enabled. Which technique can be used to bypass DEP?

    AIncreasing the buffer size
    BReturn-Oriented Programming (ROP) to chain existing code gadgets
    CUsing a longer NOP sled
    DChanging the exploit payload encoding

    Answer hidden for practice.

    Use the interactive quiz to reveal the correct answer and explanation.

    Start PENTEST Quiz
  6. Question 6Attacks & Exploits

    A penetration tester on a Linux system finds a cron job running a script as root, and the script file is world-writable. How can this be exploited?

    AThe tester must wait for the cron job to be removed
    BThe tester can modify the script to add a reverse shell or change /etc/sudoers, and it will execute as root when the cron job triggers
    CCron jobs always run as the current user
    DThe tester needs to restart the cron service first

    Answer hidden for practice.

    Use the interactive quiz to reveal the correct answer and explanation.

    Start PENTEST Quiz
  7. Question 7Attacks & Exploits

    Which of the following payload types provides the MOST interactive post-exploitation capabilities in Metasploit?

    Awindows/shell/reverse_tcp (staged shell)
    Bwindows/meterpreter/reverse_tcp (Meterpreter)
    Cwindows/exec (single command execution)
    Dgeneric/shell_bind_tcp (bind shell)

    Answer hidden for practice.

    Use the interactive quiz to reveal the correct answer and explanation.

    Start PENTEST Quiz

Key Attacks & Exploits Concepts for PENTEST

exploitattackmetasploitbuffer overflowprivilege escalationlateral movement

PENTEST Attacks & Exploits Exam Tips

Attacks and Exploits questions in PENTEST are typically scenario-based. Focus on service-level decision making aligned to official exam objectives. Priority concepts: exploit, attack, metasploit, buffer overflow, privilege escalation, lateral movement.

What PENTEST Expects

  • Anchor your answer in select the most practical, secure, and scalable answer for the stated scenario.
  • Attacks & Exploits scenarios for PENTEST are frequently mapped to Domain 4 (35%), Domain 5 (14%), so read the objective carefully before picking controls or architecture.
  • Expect multi-topic scenarios where Attacks & Exploits interacts with security, networking, infrastructure, or troubleshooting patterns rather than appearing as an isolated question.
  • When two options are both technically valid, prefer the choice that best aligns with the exam's operational scope (Professional) and vendor best practices.

High-Value Attacks & Exploits Concepts

  • Know the core Attacks & Exploits building blocks cold: exploit, attack, metasploit, buffer overflow.
  • Review the edge-case features and limits for privilege escalation, lateral movement; these details are commonly used to differentiate answer choices.
  • Practice service-integration reasoning: how Attacks & Exploits pairs with Information Gathering, Reporting in real deployment patterns.
  • For PENTEST, explain why the chosen Attacks & Exploits design meets reliability, security, and cost expectations better than the alternatives.

Common PENTEST Traps

  • Watch for answers that partially solve the requirement but miss operational constraints.
  • Questions in Attacks and Exploits often include distractors that look correct for Attacks & Exploits but violate security policy, performance, or reliability requirements.
  • Avoid picking options purely by feature name; validate data path, failure handling, and governance impact before answering.
  • If the prompt hints at automation or repeatability, eliminate manual-only operational answers first.

Fast Review Checklist

  • Can you compare at least two Attacks & Exploits implementation paths and justify which one best fits the scenario?
  • Can you map the chosen answer back to Attacks and Exploits (35%) outcomes for PENTEST?
  • Can you explain security and access boundaries for Attacks & Exploits without relying on default-open assumptions?
  • Can you describe how Attacks & Exploits integrates with Information Gathering and Reporting during failure, scaling, and monitoring events?

Exam Domains Covering Attacks & Exploits

Domain 4Attacks and Exploits35%Domain 5Post-Exploitation and Lateral Movement14%

Related Resources

🎯 Free PENTEST Mock Exam Information Gathering Questions Reporting Questions

More PENTEST Study Resources

← PENTEST Study Hub30-Day Study PlanFull Practice Exam