Kahoot - EH-07-P1 Windows Privilege Escalation

Question 1

Which windows privilege type is associated with a domain account

a. ) Delegated Admin
b. ) Guest User
c. ) Admin
d. ) NTAuthority

Answer 1

a.) Delegated Admin

Question 2

What tool in windows lets you edit the computer’s registry?

a. ) regedit
b. ) system
c. ) gpedit.msc
d. ) msconfig

Answer 2

a.) regedit

Question 3

Which command based utility is associated with creating user accounts?

a. ) cmd.exe
b. ) AddUser
c. ) UserAdd
d. ) net.exe

Answer 3

d.) net.exe

Question 4

The WinLogon process is launched with _____ privileges

a. ) Root
b. ) Admin
c. ) NT Authority
d. ) Kernel

Answer 4

c.) NT Authority

Question 5

Privilege Escalation is the process of going from a computer to a domain controller T or F

Answer 5

F

Question 6

Mitigations for windows privilege escalation include all the following EXCEPT:

a. ) Limit Physical address
b. ) Add a BIOS Password
c. ) Password protect GRUB
d. ) Encrypt the drive

Answer 6

c.) Password protect GRUB

Question 7

You hide an account from the Net utility by appending a $ to the end of the user name T or F

Answer 7

T

Question 8

What tool would you use to review when or if a user account is created?

a. ) Event Viewer
b. ) System Viewer
c. ) UserLog Viewer
d. ) regedit Viewer

Answer 8

a.) Event Viewer

Question 9

What is the name of the shell executable in windows?

a. ) sethc.exe
b. ) cmd.exe
c. ) shell.exe
d. ) Bash

Answer 9

b.) cmd.exe

Question 10

Implementing whole disk encryption helps mitigate live disk boot attacks T or F

Answer 10

T