GPEN GIAC Exam Questions and Free Practice Test

Question 85

- (Topic 2)
You execute the following netcat command:
c:targetnc -1 -p 53 -d -e cmd.exe
What action do you want to perform by issuing the above command?

A. Capture data on port 53 and performing banner grabbin

B. Capture data on port 53 and delete the remote shel

C. Listen the incoming traffic on port 53 and execute the remote shel

D. Listen the incoming data and performing port scannin

Correct Answer:C

Question 86

- (Topic 3)
You are concerned about war driving bringing hackers attention to your wireless network. What is the most basic step you can take to mitigate this risk?

A. Implement WEP

B. Implement WPA

C. Don't broadcast SSID

D. Implement MAC filtering

Correct Answer:C

Question 87

- (Topic 4)
Which of the following is NOT a Back orifice plug-in?

A. BOSOCK32

B. STCPIO

C. BOPeep

D. Beast

Correct Answer:D

Question 88

- (Topic 3)
You work as a Penetration Tester for the Infosec Inc. Your company takes the projects of security auditing. Recently, your company has assigned you a project to test the security of the we-aresecure. com Website. The we-are-secure.com Web server is using Linux operating system. When you port scanned the we-are-secure.com Web server, you got that TCP port 23, 25, and 53 are open. When you tried to telnet to port 23, you got a blank screen in response. When you tried to type the dir, copy, date, del, etc. commands you got only blank spaces or underscores symbols on the screen. What may be the reason of such unwanted situation?

A. The we-are-secure.com server is using honeypo

B. The telnet session is being affected by the stateful inspection firewal

C. The telnet service of we-are-secure.com has corrupte

D. The we-are-secure.com server is using a TCP wrappe

Correct Answer:D

Question 89

- (Topic 2)
You send SYN packets with the exact TTL of the target system starting at port 1 and going up to port 1024 using hping2 utility. This attack is known as __________.

A. Port scanning

B. Spoofing

C. Cloaking

D. Firewalking

Correct Answer:D

Question 90

- (Topic 3)
Victor wants to use Wireless Zero Configuration (WZC) to establish a wireless network connection using his computer running on Windows XP operating system. Which of the following are the most likely threats to his computer?
Each correct answer represents a complete solution. Choose two.

A. Attacker by creating a fake wireless network with high power antenna cause Victor's computer to associate with his network to gain acces

B. Information of probing for networks can be viewed using a wireless analyzer and may be used to gain acces

C. Attacker can use the Ping Flood DoS attack if WZC is use

D. It will not allow the configuration of encryption and MAC filterin

E. Sending information is not secure on wireless networ

Correct Answer:AB

START GPEN EXAM