NEW QUESTION 1
Which of the following is an extremelycommon IDS evasion technique in the web world?

• A. post knocking
• B. subnetting
• C. unicode characters
• D. spyware

Answer: C

NEW QUESTION 2
env x= ‘(){ :;};echo exploit ‘ bash –c ‘cat/etc/passwd
What is the Shellshock bash vulnerability attempting to do on an vulnerable Linux host?

• A. Add new user to the passwd file
• B. Display passwd contents to prompt
• C. Change all password in passwd
• D. Remove the passwd file.

Answer: B

NEW QUESTION 3
You are attempting to man-in-the-middle a session. Which protocol will allow you to guess a sequence number?

• A. ICMP
• B. TCP
• C. UDP
• D. UPX

Answer: B

NEW QUESTION 4
Which of these options is the most secure procedure for strong backup tapes?

• A. In a climate controlled facility offsite
• B. Inside the data center for faster retrieval in afireproof safe
• C. In a cool dry environment
• D. On a different floor in the same building

Answer: A

NEW QUESTION 5
Which of the following is assured by the use of a hash?

• A. Availability
• B. Confidentiality
• C. Authentication
• D. Integrity

Answer: D

NEW QUESTION 6
Which of the following tools can be used for passiveOS fingerprinting?

• A. tcpdump
• B. ping
• C. nmap
• D. Tracert

Answer: C

NEW QUESTION 7
An attacker changes the profile information of a particular user on a target website (the victim). The attacker uses this string to update the victim's profile to a text file and then submit the data to the attacker’s database.
<frame src=http://www/vulnweb.com/updataif.php Style=”display:none”></iframe> What is this type of attack (that can use either HTTP GET or HRRP POST) called?

• A. Cross-Site Request Forgery
• B. Cross-Site Scripting
• C. SQL Injection
• D. Browser Hacking

Answer: A

NEW QUESTION 8
You are the Systems Administrator for a large corporate organization. You need to monitor all network traffic on your local network for suspicious activities and receive notifications when an attack is occurring. Which tool would allow you to accomplish this goal?

• A. Host-based IDS
• B. Firewall
• C. Network-Based IDS
• D. Proxy

Answer: C

NEW QUESTION 9
You work as a Security Analyst for a retail organization. In securing the company's network, you set up a firewall and an IDS. However, hackers are able to attack the network. After investigating, you discover that your IDS is not configured properly and therefore is unable to trigger alarms when needed. What type of alert is the IDS giving?

• A. False Negative
• B. True Negative
• C. True Positive
• D. False Positive

Answer: A

NEW QUESTION 10
An Intrusion Detection System(IDS) has alerted the network administrator to a possibly malicious sequence of packets went to a Web server in the network’s external DMZ. The packet traffic was captured by the IDS and saved to a PCAP file.
What type of network tool can be used to determine if these packets are genuinely malicious or simply a false positive?

• A. Protocol analyzer
• B. Intrusion Prevention System (IPS)
• C. Vulnerability scanner
• D. Network sniffer

Answer: B

NEW QUESTION 11
The phase will increase the odds of success in later phases of the penetration test. It is also the very first step in Information Gathering, and it will tell you what the“landscape” looks like.
What is the most important phase of ethical hacking in which you need to spend a considerable amount of time?

• A. Network Mapping
• B. Gaining access
• C. Footprinting
• D. Escalating privileges

Answer: C

NEW QUESTION 12
You have successfully compromised a machine on the network and found a server that is alive on the same network. You tried to ping but you didn’t get any response back.
What is happening?

• A. TCP/IP doesn’t support ICMP.
• B. ICMP could be disabled on the target server.
• C. The ARP is disabled on the target server.
• D. You need to run the ping command with root privileges.

Answer: A

NEW QUESTION 13
To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used randomly generate invalid input in an attempt to crash the program.
What term is commonly used when referring to this type of testing?

• A. Bounding
• B. Mutating
• C. Puzzing
• D. Randomizing

Answer: C

NEW QUESTION 14
You have compromised a server and successfully gained a root access. You want to pivot and pass traffic undetected over the network and evade any possible Intrusion Detection System.
What is the best approach?

• A. Install and use Telnet to encrypt all outgoing traffic from this server.
• B. Install Cryptcat and encrypt outgoing packets from this server
• C. Use Alternate Data Streams to hide the outgoing packets from this server.
• D. Use HTTP so that all traffic can be routed via a browser, thus evading the internal Intrusion Detection Systems.

Answer: A

NEW QUESTION 15
What is the best description of SQL Injection?

• A. It is a Denial of Service Attack.
• B. It is an attack used to modify code in an application.
• C. It is and attack used to gain unauthorized access to a database.
• D. It isa Man-in-the-Middle attack between your SQL Server and Web App Server.

Answer: D

NEW QUESTION 16
You are performing a penetration test. You achieved access via a bufferoverflow exploit and you proceed to find interesting data, such as files with usernames and passwords. You find a hidden folder that has the administrator’s bank account password and login information for the administrator’s bitcoin account.
What should you do?

• A. Do not transfer the money but steal the bitcoins.
• B. Report immediately to the administrator.
• C. Transfer money from the administrator’s account to another account.
• D. Do not report it and continue the penetration test.

Answer: B

NEW QUESTION 17
It is a kind of malware (malicious software) that criminals install on your computer so they can lock it from a remote location. This malware generates a pop-up windows, webpage,or email warning from what looks like an officialauthority. It explains your computer has been locked because of possible illegal activities and demands payment before you can access your files and programs again.
Which term best matches this definition?

• A. Spyware
• B. Adware
• C. Ransomware
• D. Riskware

Answer: C

NEW QUESTION 18
The purpose of a is to deny network access to local area networks and other information assets by unauthorized wireless devices.

• A. Wireless Access Point
• B. Wireless Analyzer
• C. Wireless Access Control list
• D. Wireless Intrusion Prevention System

Answer: D

NEW QUESTION 19
Which of the followingtypes of firewalls ensures that the packets are part of the established session?

• A. Switch-level firewall
• B. Stateful inspection firewall
• C. Application-level firewall
• D. Circuit-level firewall

Answer: B

NEW QUESTION 20
This asymmetry cipther is based on factoring the product of two large prime numbers. What cipher is described above?

• A. SHA
• B. RC5
• C. RSA
• D. MD5

Answer: C