Given the Cyber-Attack Lifecycle diagram, identify the stage in which the attacker can run malicious code against a targeted machine.
Given the Cyber-Attack Lifecycle diagram, identify the stage in which the attacker can run malicious code against a targeted machine.
During the exploitation stage of the cyber-attack lifecycle, the attacker executes the malicious code against a targeted machine. This stage involves taking advantage of vulnerabilities in order to run the malicious payload and gain control or access to the system. The installation stage follows exploitation and involves installing malware to maintain access and further the attack. Therefore, the correct answer is exploitation.
correct
I think the answer is B. An exploit is not malicious, but allows the attacker to get access to a system and then run malicious code. The definition of the installation stage is "Installation: Once they’ve established an initial foothold, attackers will install malware in order to conduct further operations, such as maintaining access, persistence and escalating privileges."
It is actually A, installation from your definition "is after an initial foothold", running exploits occurs before gaining a foothold in the network.
A is correct. https://www.paloaltonetworks.com/cyberpedia/how-to-break-the-cyber-attack-lifecycle
Exploitation
How is this not B? Exploitation is getting a foothold. Installation is when you deliver a malicious payload.
Answer is A as per the study guide.