CAE-CO CO-M10 Offensive Cyber Operations CO-M10-O1

Learning outcome 1

Identify and exploit common misconfigurations (setuid, world-writable files, weak permissions).

Skill drills that assess this outcome

CSCD240-E1-A-Q41 primary essay setuid Explain the setuid bit in 1-2 sentences using the term "effective user ID".
CSCD240-E1-B-Q06 primary short_answer permissions-special Owner triad shows rws instead of rwx. Name the bit.
CSCD240-E1-B-Q07 primary essay setuid-effect What does the setuid bit cause when the file is executed? Use "effective user ID".
CSCD240-E1-B-Q08 primary short_answer setuid-chain Who owns /usr/bin/passwd in the ls -l line? Why does that matter for setuid?
CSCD240-E1-B-Q09 primary performance octal-special Convert rwsr-xr-x to 4-digit octal including special bits.
CSCD240-E1-B-Q10 primary performance enum-setuid Locate every setuid-root file on the filesystem; suppress permission-denied noise.
CSCD240-E1-B-Q14 primary performance enum-misconfig Find every world-writable regular file under /var (common misconfig indicator).
CSCD240-E1-B-Q49 primary performance history-hygiene Delete the in-memory command history for the current shell.
CSCD240-E1-C-Q04 primary multiple_choice setuid A -rwsr-xr-x file owned by root. Execution causes what?
CSCD240-E1-C-Q13 primary multiple_choice enum-misconfig Find every regular file under /var that is world-writable?
CSCD240-E1-C-Q18 primary multiple_choice octal-special chmod 4755 /opt/app/runner — which bit was set?
CSCD240-E1-C-Q41 primary scenario threat-reasoning -rwsrwxrwx root root .xhelper in /tmp. Why alarming?
CSCD240-E1-C-Q46 primary scenario malicious-alias .bashrc contains alias ls='rm -rf'. Consequence if planted and user opens a new shell?
CSCD240-E1-B-Q02 secondary performance recon Landing on a target; identify host kernel + architecture in one command.
CSCD240-E1-B-Q04 secondary performance recon Print the groups your user belongs to.
CSCD240-E1-B-Q23 secondary performance grep-recursive Recursively search /etc for any file containing "password=" and print only filenames.
CSCD240-E1-C-Q02 secondary multiple_choice umask After umask 027, a newly-created regular file gets which octal?