Lateral movement within a network often relies on attacker techniques to access additional assets. Which technique is commonly used to move laterally by leveraging credentials on remote hosts?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the Security Operations Exam with targeted practice questions. Enhance your understanding with detailed explanations and tips to successfully pass your exam!

Multiple Choice

Lateral movement within a network often relies on attacker techniques to access additional assets. Which technique is commonly used to move laterally by leveraging credentials on remote hosts?

Explanation:
Lateral movement is often driven by reusing credentials that already exist on a compromised host to authenticate to other machines. Pass-the-Hash is the technique that makes this possible by using the password hash (typically an NTLM hash) captured from one system to authenticate to remote hosts without needing the plaintext password. In Windows environments, many services and remote access methods accept these hashes, so an attacker can poke around the network, access additional assets, and escalate privileges on other machines simply by presenting the stolen hash. This allows rapid expansion through the network while bypassing the need to crack passwords, which is why it is a common and effective lateral-movement method. Phishing via email and social engineering for initial access are focused on gaining footholds or credentials initially, not on moving laterally by leveraging credentials on remote hosts. SQL injection targets web applications to exfiltrate data or gain access through a vulnerability, not to hop between machines using remote credentials.

Lateral movement is often driven by reusing credentials that already exist on a compromised host to authenticate to other machines. Pass-the-Hash is the technique that makes this possible by using the password hash (typically an NTLM hash) captured from one system to authenticate to remote hosts without needing the plaintext password. In Windows environments, many services and remote access methods accept these hashes, so an attacker can poke around the network, access additional assets, and escalate privileges on other machines simply by presenting the stolen hash. This allows rapid expansion through the network while bypassing the need to crack passwords, which is why it is a common and effective lateral-movement method.

Phishing via email and social engineering for initial access are focused on gaining footholds or credentials initially, not on moving laterally by leveraging credentials on remote hosts. SQL injection targets web applications to exfiltrate data or gain access through a vulnerability, not to hop between machines using remote credentials.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy