🔥 3-day streak
CompTIA PenTest+ (PT0-003)174 / 175
Question 174 of 175
During an internal engagement, you notice Windows clients attempting to resolve the hostname 'wpad' via broadcast because DNS lookups fail. You want to intercept their proxy configuration requests to force NTLM authentication that you can then relay to a target server with SMB signing disabled. Which technique most directly enables this attack chain?
Reviewed for accuracy · Report an issueNext question