🔥 3-day streak
CompTIA PenTest+ (PT0-003)90 / 175
Question 90 of 175

During a post-exploitation phase on a compromised Windows Server 2019 host, a penetration tester wants to store a secondary payload on disk in a way that keeps it out of casual directory listings and standard file browsing, while still allowing it to be executed later. The tester decides to hide the executable behind a legitimate log file already present in C:\Logs\system.log. Which technique achieves this goal?

Reviewed for accuracy · Report an issueNext question