A penetration tester has gained initial access to a Windows host and needs to enumerate all local user accounts on the system. Which of the following commands would achieve this objective?
Using tasklist /svc to list active processes and services
Initiating a DNS zone transfer from the network
Running the net user command to list local user accounts
Running the net user command on a Windows host retrieves a list of all local user accounts. Checking system logs would only reveal users who have connected, not all provisioned accounts. The tasklist /svc command displays running processes and their associated services, not user profiles. DNS zone transfers are used for enumerating DNS records within a domain, not local user accounts.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does the 'net user' command do in Windows?
Open an interactive chat with Bash
How is 'net user' different from other commands like 'tasklist /svc'?
Open an interactive chat with Bash
Why is checking system logs for remote connections not effective for identifying user profiles?