3/2/26, 11:35
AM
TES TOUT ETHICAL HACKER PRO LABS (MODULES 8-15) WITH COMPLETE
QUESTIONS AND ANSWERS 2026/2027 UPDATE.
8.1.4 Analyze a USB keylogger attack Solution
The CEO of CorpNet.xyz has hired your firm to obtain Above the
computer, select Back to view the back of the computer. some
passwords for their company. A senior IT network
administrator, Oliver Lennon, is suspected ofOn the back of the computer,
drag the USB Type A connector for the keyboard wrongdoing and suspects
he is going to be fired from to another USB port on the computer.
the company. The problem is that he changed many of
the standard passwords known to only the top
Make sure to plug the
keyboard back in. executives, and now he is the only
one that knows them.
Your company has completed the legal
documents On the Shelf,
expand System Cases. needed to protect you and
the company.
With the help of a CorpNet.xyz executive, you
were Drag the Laptop to
the Workspace. allowed into the IT Admin's office
after hours. You
unplugged the keyboard from the back of the ITAdmin Above
the laptop, select Back to view the back of the laptop. computer
1/67
,3/2/26, 11:35
AM
and placed a USB keylogger into the USB,
then plugged the USB keyboard into the keylogger. From the computer, drag
the keylogger to a USB port on the laptop.
After a week, the company executive lets you back into
the IT Admin's office after hours again.Above the laptop, select Front to view the
front of the laptop.
In this lab, your task is to use the keylogger to recover
the changed passwords as follows: On the laptop, select Click to view
Windows 10.
Move the keyboard USB connector to a different USB Press S + B + K
to toggle from the keylogger mode to the flash drive mode. port on
ITAdmin.
Remove the keylogger from ITAdmin. Select Tap to choose
what happens with removable drives. Move the consultant laptop
from the Shelf to the
Workspace. Select Open folder to view files.
Plug the keylogger into the consultant laptop's USB
drive. Double-click LOG.txt to open the file.
Use the SBK key combination to toggle the USB
keylogger from keylogger mode to USB flash drive
In the top right, select
Answer Questions. mode.
Open the LOG.txt file and inspect the
2/67
,3/2/26, 11:35
AM
contents. Answer the
questions. Find the olennon account's
password.
Find the Administrator account's
password. Select
Score Lab. Answer the questions.
Question 1: P@ssw0rd
Question 2: 4Lm87Qde
8.1.5 Analyze a USB keylogger attack 2 Solution
Recently, the administrative assistant found a foreign 1. On the Shelf, expand
Storage Devices.
device connected to the ITAdmin computer while 2. From the shelf,
drag the USB Keylogger to a USB port on ITAdmin. updating some of
their hardware. The device was 3. On the monitor, select Click
to view Windows 10.
turned over to you, and you have determined that it is a 4. Press S
+ B + K to toggle from the keylogger mode to the flash drive mode.
keylogger. You need to sift through the information on 5. Select Tap to
choose what happens with removable drives.
the keylogger to find which accounts may be 6. Select Open folder to view
files.
compromised. 7. Double-click LOG.txt to open the file.
3/67
, 3/2/26, 11:35
AM
In this lab, your task is to determine which corporate
8. Maximize the window
for easier viewing. accounts have been compromised as
follows: 9. In the top right, select
Answer Questions.
Plug the keylogger into ITAdmin's USB port. 10. In the file, find
which account passwords were captured. Use the keyboard
combination of SBK to toggle the 11. In the file, find any
compromised financial information. USB keylogger from
keylogger mode to USB flash drive12. Select Score Lab.
mode.
Open the LOG.txt file and inspect the contents.
Question 1:
email.com, amazon.com Scan the document for
corporate passwords or Question 2:
4556358591800117
financial
information
.
Answer the
questions.
4/67
AM
TES TOUT ETHICAL HACKER PRO LABS (MODULES 8-15) WITH COMPLETE
QUESTIONS AND ANSWERS 2026/2027 UPDATE.
8.1.4 Analyze a USB keylogger attack Solution
The CEO of CorpNet.xyz has hired your firm to obtain Above the
computer, select Back to view the back of the computer. some
passwords for their company. A senior IT network
administrator, Oliver Lennon, is suspected ofOn the back of the computer,
drag the USB Type A connector for the keyboard wrongdoing and suspects
he is going to be fired from to another USB port on the computer.
the company. The problem is that he changed many of
the standard passwords known to only the top
Make sure to plug the
keyboard back in. executives, and now he is the only
one that knows them.
Your company has completed the legal
documents On the Shelf,
expand System Cases. needed to protect you and
the company.
With the help of a CorpNet.xyz executive, you
were Drag the Laptop to
the Workspace. allowed into the IT Admin's office
after hours. You
unplugged the keyboard from the back of the ITAdmin Above
the laptop, select Back to view the back of the laptop. computer
1/67
,3/2/26, 11:35
AM
and placed a USB keylogger into the USB,
then plugged the USB keyboard into the keylogger. From the computer, drag
the keylogger to a USB port on the laptop.
After a week, the company executive lets you back into
the IT Admin's office after hours again.Above the laptop, select Front to view the
front of the laptop.
In this lab, your task is to use the keylogger to recover
the changed passwords as follows: On the laptop, select Click to view
Windows 10.
Move the keyboard USB connector to a different USB Press S + B + K
to toggle from the keylogger mode to the flash drive mode. port on
ITAdmin.
Remove the keylogger from ITAdmin. Select Tap to choose
what happens with removable drives. Move the consultant laptop
from the Shelf to the
Workspace. Select Open folder to view files.
Plug the keylogger into the consultant laptop's USB
drive. Double-click LOG.txt to open the file.
Use the SBK key combination to toggle the USB
keylogger from keylogger mode to USB flash drive
In the top right, select
Answer Questions. mode.
Open the LOG.txt file and inspect the
2/67
,3/2/26, 11:35
AM
contents. Answer the
questions. Find the olennon account's
password.
Find the Administrator account's
password. Select
Score Lab. Answer the questions.
Question 1: P@ssw0rd
Question 2: 4Lm87Qde
8.1.5 Analyze a USB keylogger attack 2 Solution
Recently, the administrative assistant found a foreign 1. On the Shelf, expand
Storage Devices.
device connected to the ITAdmin computer while 2. From the shelf,
drag the USB Keylogger to a USB port on ITAdmin. updating some of
their hardware. The device was 3. On the monitor, select Click
to view Windows 10.
turned over to you, and you have determined that it is a 4. Press S
+ B + K to toggle from the keylogger mode to the flash drive mode.
keylogger. You need to sift through the information on 5. Select Tap to
choose what happens with removable drives.
the keylogger to find which accounts may be 6. Select Open folder to view
files.
compromised. 7. Double-click LOG.txt to open the file.
3/67
, 3/2/26, 11:35
AM
In this lab, your task is to determine which corporate
8. Maximize the window
for easier viewing. accounts have been compromised as
follows: 9. In the top right, select
Answer Questions.
Plug the keylogger into ITAdmin's USB port. 10. In the file, find
which account passwords were captured. Use the keyboard
combination of SBK to toggle the 11. In the file, find any
compromised financial information. USB keylogger from
keylogger mode to USB flash drive12. Select Score Lab.
mode.
Open the LOG.txt file and inspect the contents.
Question 1:
email.com, amazon.com Scan the document for
corporate passwords or Question 2:
4556358591800117
financial
information
.
Answer the
questions.
4/67
