312-50v12 Exam - Question 113

Question

Which of the following Metasploit post-exploitation modules can be used to escalate privileges on Windows systems?

Examice · Accepted Answer

getsystem is a Metasploit post-exploitation module designed to escalate privileges on Windows systems. It attempts to elevate the privileges of the current user to the highest possible level, often SYSTEM-level privileges, through various techniques such as named pipe impersonation, service exploitation, or token duplication. The getuid module is used to retrieve the user ID of the current user; keylogrecorder is used for logging keystrokes; and autoroute is used for adding a network route to the target system. Therefore, none of the other modules is intended for privilege escalation.

eli117 · Answer

The getsystem module is a built-in Metasploit module that attempts to elevate the privileges of the current user to the highest possible level, including SYSTEM-level privileges. The getuid module is used to retrieve the user ID of the current user on the target system. The keylogrecorder module is used to log keystrokes on the target system, and the autoroute module is used to add a route to the target system. Neither of these modules is used for privilege escalation.

jeremy13 · Answer

A. getsystem 
Like Q341 V11

Vincent_Lu · Answer

A. getsystem

victorfs · Answer

A. Getsystem

insaniunt · Answer

A. getsystem

This is a Metasploit post-exploitation module that can be used to escalate privileges on Windows systems by abusing various techniques, such as named pipe impersonation, service exploitation, or token duplication

sshksank · Answer

CEH V12, Page.688
try to escalate the privileges by issuing a getsystem command that attempts to elevate the user privileges.

a307962 · Answer

A. getsystem

312-50v12 Exam - Question 113

Discussion