GPEN Online Practice Questions and Answers

192.168.116.9 Is an IP address for www.scanned-server.com. Why are the results from the two scans, shown below, different?

A. John.pot

B. John conf

C. John.rec

D. John.ini

You have been contracted to perform a black box pen test against the Internet facing servers for a company. They want to know, with a high level of confidence, if their servers are vulnerable to external attacks. Your contract states that you can use all tools available to you to pen test the systems. What course of action would you use to generate a report with the lowest false positive rate?

A. Use a port scanner to find open service ports and generate a report listing allvulnerabilities associated with those listening services.

B. Use a vulnerability or port scanner to find listening services and then try to exploitthose services.

C. Use a vulnerability scanner to generate a report of vulnerable services.

D. Log into the system and record the patch levels of each service then generate areport that lists known vulnerabilities for all the running services.

Joseph works as a Network Administrator for WebTech Inc. He has to set up a centralized area on the network so that each employee can share resources and documents with one another. Which of the following will he configure to accomplish the task?

A. WEP

B. VPN

C. Intranet

D. Extranet

You have just set up a wireless network for customers at a coffee shop. Which of the following are good security measures to implement? Each correct answer represents a complete solution. Choose two.

A. MAC filtering the router

B. Using WPA encryption

C. Using WEP encryption

D. Not broadcasting SSID

You want to run the nmap command that includes the host specification of 202.176.56-57.*. How many hosts will you scan?

A. 512

B. 64

C. 1024

D. 256

Which of the following tools is spyware that makes Windows clients send their passwords as clear text?

A. Pwddump2

B. SMBRelay

C. KrbCrack

D. C2MYAZZ

Fill in the blank with the appropriate act name.

The___ act gives consumers the right to ask emailers to stop spamming them.

A. CAN-SPAM

You work as a Penetration Tester for the Infosec Inc. Your company takes the projects of security auditing. Recently, your company has assigned you a project to test the security of the we-aresecure. com network. Now, when you have

finished your penetration testing, you find that the weare- secure.com server is highly vulnerable to SNMP enumeration. You advise the we-are-secure Inc. to turn off SNMP; however, this is not possible as the company is using various SNMP

services on its remote nodes. What other step can you suggest to remove SNMP vulnerability?

Each correct answer represents a complete solution. Choose two.

A. Close port TCP 53.

B. Change the default community string names.

C. Upgrade SNMP Version 1 with the latest version.

D. Install antivirus.

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He performs a Teardrop attack on the we-are-secure server and observes that the server crashes. Which of the following is the most likely cause of the server crash?

A. The spoofed TCP SYN packet containing the IP address of the target is filled in both the source and destination fields.

B. The we-are-secure server cannot handle the overlapping data fragments.

C. The ICMP packet is larger than 65,536 bytes.

D. Ping requests at the server are too high.

Which of the following tools can be used to find a username from a SID?

A. SNMPENUM

B. SID

C. SID2User

D. SIDENUM