1. Powershell 2. WMI 3. VBScript 4. mimikatz

8A: Avoid Detection Flashcards by Adam Klein

General term for the collected protocols, policies, and hardware that authenticate and authorize access to a network at the device level.

NAC

How well did you know this?

Not at all

Perfectly

Attack where the threat actor makes an independent connection between two victims and is able to read and possibly modify traffic (AKA mitm attack).

on-path attack

How well did you know this?

Not at all

Perfectly

Exploit techniques that use standard system tools and packages to perform intrusions.

living-off-the-land (LoTL)

How well did you know this?

Not at all

Perfectly

4 LoTL tools

Powershell
WMI
VBScript
mimikatz

How well did you know this?

Not at all

Perfectly

Method to clear logs using Meterpreter.

clearev

How well did you know this?

Not at all

Perfectly

Method to clear logs in Windows CLI.

wevtutil

How well did you know this?

Not at all

Perfectly

Method to clear logs in Linux.

echo “” > /var/log/syslog

How well did you know this?

Not at all

Perfectly

A tool in Metasploit that allows you to delete or modify timestamp-related information on files.

TimeStomp

How well did you know this?

Not at all

Perfectly

A method of covering your tracks by setting the command history to zero before executing the commands in a Bash shell.

export HISTSIZE=0

How well did you know this?

Not at all

Perfectly

Brainscape's Knowledge GenomeTM

8A: Avoid Detection Flashcards

2.2 Given a scenario, perform active reconnaissance. 3.7 Given a scenario, perform post-exploitation techniques. 5.3 Explain use cases of the following tools during the phases of a penetration test.

Brainscape's Knowledge Genome^TM