A Review Of Certified GPEN Study Guide

NEW QUESTION 1

If the privacy bit is set in the 802.11 header, what does it indicate?

• A. SSID cloaking is being use
• B. Some form of encryption is In us
• C. WAP is being use
• D. Some form of PEAP is being use

Answer: C

NEW QUESTION 2

You work as a Network Administrator for Tech-E-book Inc. You are configuring the ISA Server
2006 firewall to provide your company with a secure wireless intranet. You want to accept inbound mail delivery though an SMTP server. What basic rules of ISA Server do you need to configure to accomplish the task.

• A. Network rules
• B. Publishing rules
• C. Mailbox rules
• D. Access rules

Answer: B

NEW QUESTION 3

Which of the following tools can be used to automate the MITM attack?

• A. Hotspotter
• B. Airjack
• C. IKECrack
• D. Kismet

Answer: B

NEW QUESTION 4

What happens when you scan a broadcast IP address of a network?
Each correct answer represents a complete solution. Choose all that apply.

• A. It leads to scanning of all the IP addresses on that subnet at the same tim
• B. It will show an error in the scanning proces
• C. It may show smurf DoS attack in the network IDS of the victi
• D. Scanning of the broadcast IP address cannot be performe

Answer: AC

NEW QUESTION 5

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He performs a Teardrop attack on the we-are-secure server and observes that the server crashes. Which of the following is the most likely cause of the server crash?

• A. The spoofed TCP SYN packet containing the IP address of the target is filled in both the source and destination field
• B. The we-are-secure server cannot handle the overlapping data fragment
• C. The ICMP packet is larger than 65,536 byte
• D. Ping requests at the server are too hig

Answer: B

NEW QUESTION 6

John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He wants to perform a stealth scan to discover open ports and applications running on the We-are-secure server. For this purpose, he wants to initiate scanning with the IP address of any third party. Which of the following scanning techniques will John use to accomplish his task?

• A. UDP
• B. TCP SYN/ACK
• C. IDLE
• D. RPC

Answer: C

NEW QUESTION 7

How many bits encryption does SHA-1 use?

• A. 128
• B. 140
• C. 512
• D. 160

Answer: D

NEW QUESTION 8

You work as a Penetration Tester for the Infosec Inc. Your company takes the projects of security auditing. Recently, your company has assigned you a project to test the security of the we-aresecure. com Website. The we-are-secure.com Web server is using Linux operating system. When you port scanned the we-are-secure.com Web server, you got that TCP port 23, 25, and 53 are open. When you tried to telnet to port 23, you got a blank screen in response. When you tried to type the dir, copy, date, del, etc. commands you got only blank spaces or underscores symbols on the screen. What may be the reason of such unwanted situation?

• A. The we-are-secure.com server is using honeypo
• B. The we-are-secure.com server is using a TCP wrappe
• C. The telnet service of we-are-secure.com has corrupte
• D. The telnet session is being affected by the stateful inspection firewal

Answer: B

NEW QUESTION 9

You are using the dsniff tool to intercept communications between two entities and establish credentials with both sides of the connections. These entities do not notice that you were retrieving the information between these two. Which of the following attacks are you performing?

• A. Man-in-the-middle
• B. ARP poisoning
• C. Session hijacking
• D. DoS

Answer: A

NEW QUESTION 10

John works as a professional Ethical Hacker. He is assigned a project to test the security of www.we-are-secure.com. He has to ping 500 computers to find out whether these computers are connected to the server or not. Which of the following will he use to ping these computers?

• A. PING
• B. TRACEROUTE
• C. Ping sweeping
• D. NETSTAT

Answer: C

NEW QUESTION 11

What is the sequence in which packets are sent when establishing a connection to a secured network?

• A. Auth, Associate and Probe
• B. Probe, Auth and Associate
• C. Associate, Probe and Auth
• D. Prob
• E. Associate and Auth

Answer: C

NEW QUESTION 12

In which of the following attacks does an attacker use packet sniffing to read network traffic between two parties to steal the session cookie?

• A. Cross-site scripting
• B. Session fixation
• C. Session sidejacking
• D. ARP spoofing

Answer: C

NEW QUESTION 13
CORRECT TEXT
Fill in the blank with the appropriate tool name.
__________is a wireless network cracking tool that exploits the vulnerabilities in the RC4 Algorithm, which comprises the WEP security parameters.

• A.

Answer: WEPcrack

NEW QUESTION 14

Which of the following tasks can be performed by using netcat utility? Each correct answer represents a complete solution. Choose all that apply.

• A. Firewall testing
• B. Creating a Backdoor
• C. Port scanning and service identification
• D. Checking file integrity

Answer: ABC

NEW QUESTION 15

You want to run the nmap command that includes the host specification of 202.176.56-57.*. How many hosts will you scan?

• A. 256
• B. 512
• C. 1024
• D. 64

Answer: B

NEW QUESTION 16

The scope of your engagement is to include a target organization located in California with a /24 block of addresses that they claim to completely own. Which site could you utilize to confirm that you have been given accurate information before starting reconnaissance activities?

• A. www.whois.net
• B. www.arin.nei
• C. www.apnic.net
• D. www.ripe.net

Answer: B

NEW QUESTION 17
......