Free Top CompTIA Pentest+ PT0-003 Actual Exam Questions - Question 3 Discussion
[Attacks and Exploits] During an assessment, a penetration tester gains a low-privilege shell and then runs the following command:
findstr /SIM /C:"pass" *.txt *.cfg *.xml
Which of the following is the penetration tester trying to enumerate?
Option D. The command is searching for "pass" across config and text files, aiming to find secret data like passwords, not just the files themselves or permissions.
Makes sense, they want to find any secrets containing “pass,” so D.
D imo, but thinking about this from another angle—findstr is searching text files for the word "pass," which is often part of "password" or related credentials. So it's clearly not about permissions or virtual hosts. Configuration files might contain passwords, but the main goal here is to find secret info like passwords or keys hidden in those files, so secrets fit best.
Looks like they’re searching for passwords in files, so I’d say D. Secrets.