A. To advertise the presence of the attacker in the network
B. To maintain long-term access for ongoing espionage or data exfiltration
C. To provide a base for launching attacks on external organizations
D. To disrupt the target organization's daily operations
A. Nessus
B. Wireshark
C. Metasploit
D. BloodHound
A. Exploiting misconfigured file shares
B. DNS spoofing
C. DNS tunneling
D. Remote code execution via PsExec
A. Wireshark
B. Nmap
C. OpenSSL
D. PsExec
A. The goals and objectives of the engagement
B. The reward system for the red team members upon successful breach
C. The exact time and date the engagement will begin
D. The personal information of the red team members
A. To extract plaintext passwords from the Active Directory database
B. To obtain persistent access and impersonate the domain's Kerberos Ticket Granting Ticket (TGT)
C. To modify Active Directory schema
D. To disrupt the availability of Active Directory services
A. To use one compromised system to gain access to another system
B. To reverse engineer the application code
C. To obfuscate the malicious traffic to avoid detection
D. To perform data exfiltration through a covert channel
A. To predict the next real-world attack accurately
B. To create a competitive environment among team members
C. To simulate realistic threat scenarios based on potential attackers
D. To enhance the team's understanding of criminal psychology
A. Encryption of C2 traffic
B. Use of legitimate websites for data exfiltration
C. Frequent changing of payload signatures
D. Rapid rotation of IP addresses