What does Metasploit's database primarily store to enable advanced queries?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

What does Metasploit's database primarily store to enable advanced queries?

Explanation:
Metasploit’s database is built to organize target information so you can run powerful, cross-cutting queries. It primarily stores records of hosts, the services detected on those hosts (including versions), and the vulnerabilities associated with those services. This data model lets you ask questions like which hosts have a particular service exposed, which hosts share a given vulnerability, or which service versions align with a specific CVE. It also enables correlating scan results, service data, and exploitation attempts across the target set. While credentials and exploit results can be stored for convenience and use, the main data you query against are hosts, services, and vulnerabilities. Archived logs aren’t the primary data store for enabling these queries.

Metasploit’s database is built to organize target information so you can run powerful, cross-cutting queries. It primarily stores records of hosts, the services detected on those hosts (including versions), and the vulnerabilities associated with those services. This data model lets you ask questions like which hosts have a particular service exposed, which hosts share a given vulnerability, or which service versions align with a specific CVE. It also enables correlating scan results, service data, and exploitation attempts across the target set. While credentials and exploit results can be stored for convenience and use, the main data you query against are hosts, services, and vulnerabilities. Archived logs aren’t the primary data store for enabling these queries.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy