Which WMIC command lists all processes on a remote system?

Study for the SANS560 GIAC Penetration Tester (GPEN) Test. Study with flashcards and multiple choice questions, each question has hints and explanations. Get ready for your exam!

Multiple Choice

Which WMIC command lists all processes on a remote system?

Explanation:
The command uses WMIC to query the remote system’s processes via the Win32_Process class. By targeting the remote host with /node and providing credentials, you can enumerate running processes. The form process list brief asks WMIC to return a concise list of all process instances, showing essential fields like the process name and its ID for every running process. This is exactly what “lists all processes” means, unlike commands that delete a specific process, or that query services instead of processes, or that filter by name or PID to delete. So this form of the command is the correct way to capture the complete process list on the remote machine.

The command uses WMIC to query the remote system’s processes via the Win32_Process class. By targeting the remote host with /node and providing credentials, you can enumerate running processes. The form process list brief asks WMIC to return a concise list of all process instances, showing essential fields like the process name and its ID for every running process. This is exactly what “lists all processes” means, unlike commands that delete a specific process, or that query services instead of processes, or that filter by name or PID to delete. So this form of the command is the correct way to capture the complete process list on the remote machine.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy