In the seven-phase intrusion model, which phase follows Installation?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the Security Operations Exam with targeted practice questions. Enhance your understanding with detailed explanations and tips to successfully pass your exam!

Multiple Choice

In the seven-phase intrusion model, which phase follows Installation?

Explanation:
In this seven-phase intrusion model, the key idea is the progression of actions once attacker access is gained. After the malware is installed on a target system, the next step is to establish a Command and Control (C2) channel. This phase provides the attacker with a remote conduit to communicate with the compromised host, issue commands, receive data, and coordinate further actions or updates while maintaining control and persistence. Without C2, the installed payload would be isolated and unable to be managed or scaled. The other phases occur earlier or later in the sequence: reconnaissance happens at the outset to identify targets, delivery and exploitation bring the payload into the environment and trigger installation, and actions on objectives come after control is established to achieve the attacker’s goals.

In this seven-phase intrusion model, the key idea is the progression of actions once attacker access is gained. After the malware is installed on a target system, the next step is to establish a Command and Control (C2) channel. This phase provides the attacker with a remote conduit to communicate with the compromised host, issue commands, receive data, and coordinate further actions or updates while maintaining control and persistence. Without C2, the installed payload would be isolated and unable to be managed or scaled.

The other phases occur earlier or later in the sequence: reconnaissance happens at the outset to identify targets, delivery and exploitation bring the payload into the environment and trigger installation, and actions on objectives come after control is established to achieve the attacker’s goals.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy