When pivoting from a compromised node to a target node, only port 80 can be attacked

Question

BlackTom AI · Accepted Answer

Analyse the claim about pivoting from a compromised node to a target node: this statement asserts that only port 80 can be attacked during pivoting.

First, consider what pivoting entails: after compromising an initial node, an attacker moves laterally to access other systems or services. The available attack surface on the target depends on the services exposed by that target, not on a fixed constraint to port 80.

Second, port 80 is commonly used for HTTP traffic, but many other ports serve different services (e.g., 22 for SSH, 21 for FTP, 443 for HTTPS, 3389 for RDP, 1433 for SQL Server, 1521 for Oracle, etc.). An attacker could exploit vulnerabilities, misconfigurations, or weak credentials on any reachable service, provided the port is open and reachable through the network path.

Third, pivoting often leverages the compromised host as a foothold to access other hosts within the network, and it may involve tunneling, port forwarding, or abusing protocols across various ports. Limiting attack opportunities to port 80 would ignore these common lateral movement techniques and the diversity of services that might be present on the target or intermediate hosts.

Fourth, network controls, firewalls, and host-based defenses influence which ports are accessible, but the fundamental premise of pivoting is not inherently restricted to a single port. If port 80 is the only open or exposed port on a target, then that port could be used; if other ports are open, those could be potential attack vectors as well.

In short, the assertion is inaccurate because pivoting is not restricted to port 80; it depends on the services exposed on the target, the network path, and the attacker’s objectives. If any other service is available on a different port, it could be attacked as part of pivoting.

EN.650.631.01.SP25 Exam 1

When pivoting from a compromised node to a target node, only port 80 can be attacked

查看解析

登录即可查看完整答案

类似问题

What precautionary measure should be taken by penetration testers to ensure they have the legal right to conduct their tests on a particular computer or network?

What are the most complete general steps taken to attack any networked device?

What is difference between vulnerability assessment and penetration testing?

You should enumerate recommended mitigations or next steps in this section of a formal Penetration Test Report.

This section of a formal Penetration Test Report defines the restrictions on the aggressiveness of a penetration test, describes the methods that a pen tester will use to reach a target, and provides a list of the planned/executed tests.

A is limited to the scanning and enumeration phase of the cyber kill chain, while a encompasses the full kill chain.

In a consumer society, many adults channel creativity into buying things

更多留学生实用工具

考试浏览器助手

风格化写作助手

论文查重助手

文献引用助手

课堂转译助手

课堂笔记助手

Quiz搜索助手

学校历年真题

智能刷题助手

智能匹配练习

希望你的学习变得更简单

EN.650.631.01.SP25 Exam 1

When pivoting from a compromised node to a target node, only port 80 can be attacked

查看解析

登录即可查看完整答案

类似问题

What precautionary measure should be taken by penetration testers to ensure they have the legal right to conduct their tests on a particular computer or network?

What are the most complete general steps taken to attack any networked device?

What is difference between vulnerability assessment and penetration testing?

You should enumerate recommended mitigations or next steps in this section of a formal Penetration Test Report.

This section of a formal Penetration Test Report defines the restrictions on the aggressiveness of a penetration test, describes the methods that a pen tester will use to reach a target, and provides a list of the planned/executed tests.

A ________ is limited to the scanning and enumeration phase of the cyber kill chain, while a ________ encompasses the full kill chain.

In a consumer society, many adults channel creativity into buying things

更多留学生实用工具

希望你的学习变得更简单

A is limited to the scanning and enumeration phase of the cyber kill chain, while a encompasses the full kill chain.