Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CompTIA PenTest+ > Covering Your Tracks > Flashcards

Covering Your Tracks Flashcards

1
Q

Erase, Modify, Disable Evidence

A
  • removing unneeded files or tools that were added to the victims machine, hiding resources in uncommon locations
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Clearing Log Files

A
  • cleaning up traces of activities in various log files

* NOT usually done during a pen test

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Modifying Log Files

A
  • log files are just text, can use timestomp to modify access time of file, change file ownership to original user
  • NOT usually done during a pen test
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

TimeStomp

A
  • touch (linux, unix, OS X) - updates time to the current time
  • ctime (linux, unix, OSX) - change time to a given date/time
  • meterpreter has a built in tool
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

CompTIA PenTest+ (30 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions