GPEN GIAC Exam Questions and Free Practice Test

Question 55

- (Topic 1)
Which of the following TCP packet sequences are common during a SYN (or half-open) scan?

A. The source computer sends SYN and the destination computer responds with RST

B. The source computer sends SYN-ACK and no response Is received from the destination computer

C. The source computer sends SYN and no response is received from the destination computer

D. The source computer sends SYN-ACK and the destination computer responds with RST-ACK

E. A,B and C

F. A and C

G. C and D

H. C and D

Correct Answer:C

Question 56

- (Topic 1)
Which of the following is possible in some SQL injection vulnerabilities on certain types of databases that affects the underlying server OS?

A. Database structure retrieval

B. Shell command execution

C. Data manipulation

D. Data query capabilities

Correct Answer:A
Reference:
http://www.darkmoreops.com/2014/08/28/use-sqlmap-sql-injection-hack-website-database/

Question 57

- (Topic 1)
A tester has been contracted to perform a penetration test for a corporate client. The scope of the test is limited to end-user workstations and client programs only. Which of die following actions is allowed in this test?

A. Attempting to redirect the internal gateway through ARP poisoning

B. Activating bot clients and performing a denial-of-service against the gatewa

C. Sniffing and attempting to crack the Domain Administrators password has

D. Sending a malicious pdf to a user and exploiting a vulnerable Reader versio

Correct Answer:B

Question 58

- (Topic 1)
How can web server logs be leveraged to perform Cross-Site Scripting (XSSI?

A. Web logs containing XSS may execute shell scripts when opened In a GUI textbrowser

B. XSS attacks cause web logs to become unreadable and therefore are an effective DOS attac

C. If web logs are viewed in a web-based console, log entries containing XSS mayexecute on the browse

D. When web logs are viewed in a termina

E. XSS can escape to the shell and executecommand

Correct Answer:C

Question 59

- (Topic 3)
Which of the following layers of TCP/IP model is used to move packets between the Internet Layer interfaces of two different hosts on the same link?

A. Application layer

B. Link layer

C. Internet layer

D. Transport Layer

Correct Answer:B

Question 60

- (Topic 1)
During a penetration test we determine that TCP port 22 is listening on a target host. Knowing that SSHD is the typical service that listens on that port we attempt to validate that assumption with an SSH client but our effort Is unsuccessful. It turns out that it is actually an Apache webserver listening on the port, which type of scan would have helped us to determine what service was listening on port 22?

A. Version scanning

B. Port scanning

C. Network sweeping

D. OS fingerprinting

Correct Answer:C

START GPEN EXAM