GCIH GIAC Exam Questions and Free Practice Test

Question 19

Which of the following applications is NOT used for passive OS fingerprinting?

A. Networkminer

B. Satori

C. p0f

D. Nmap

Correct Answer:D

Question 20

Firewalking is a technique that can be used to gather information about a remote network protected by a firewall. This technique can be used effectively to perform information gathering attacks. In this technique, an attacker sends a crafted packet with a TTL value that is set to expire one hop past the firewall. Which of the following are pre-requisites for an attacker to conduct firewalking?
Each correct answer represents a complete solution. Choose all that apply.

A. An attacker should know the IP address of a host located behind the firewall.

B. ICMP packets leaving the network should be allowed.

C. There should be a backdoor installed on the network.

D. An attacker should know the IP address of the last known gateway before the firewall.

Correct Answer:ABD

Question 21

Which of the following tools can be used for stress testing of a Web server?
Each correct answer represents a complete solution. Choose two.

A. Internet bots

B. Scripts

C. Anti-virus software

D. Spyware

Correct Answer:AB

Question 22

In the DNS Zone transfer enumeration, an attacker attempts to retrieve a copy of the entire zone file for a domain from a DNS server. The information provided by the DNS zone can help an attacker gather user names, passwords, and other valuable information. To attempt a zone transfer, an attacker must be connected to a DNS server that is the authoritative server for that zone. Besides this, an attacker can launch a Denial of Service attack against the zone's DNS servers by flooding them with a lot of requests. Which of the following tools can an attacker use to perform a DNS zone transfer?
Each correct answer represents a complete solution. Choose all that apply.

A. Host

B. Dig

C. DSniff

D. NSLookup

Correct Answer:ABD

Question 23

US Garments wants all encrypted data communication between corporate office and remote location.
They want to achieve following results:
l Authentication of users
l Anti-replay
l Anti-spoofing
l IP packet encryption
They implemented IPSec using Authentication Headers (AHs). Which results does this solution provide? (Click the Exhibit button on the toolbar to see the case study.)
Each correct answer represents a complete solution. Choose all that apply.

A. Anti-replay

B. IP packet encryption

C. Authentication of users

D. Anti-spoofing

Correct Answer:AD

Question 24

You are the Administrator for a corporate network. You are concerned about denial of service attacks.
Which of the following would be the most help against Denial of Service (DOS) attacks?

A. Packet filtering firewall

B. Network surveys.

C. Honey pot

D. Stateful Packet Inspection (SPI) firewall

Correct Answer:D

START GCIH EXAM