examples

Question 1

Which of the following files can be used to block the “internet archive” from making snapshots of a website?

Answer 1

Robots.txt

Question 2

The strength of asymmetric encryption lies in the face that in addresses the most serious problem of symmetric encryption - -key distribution

Answer 2

True

Question 3

Before launching an active security tool, a pen tester will always perform footprinting so that s/he can better plan a more effective attack

Answer 3

True

Question 4

Which of the following is the primary goal of a penetration test?

Answer 4

primary goal of a penetration test is to determine whether a specific resource can be compromised

Question 5

A penetration tester may be able to find organizations’ insecure applications by searching Google.

Answer 5

True

Question 6

Because the User Datagram Protocol does not perform hand shaking like TCP does, it is harder to scan and enumerate

Answer 6

False

Question 7

Which of the following command allows pen tester to view the arp cache of a windows system

Answer 7

Arp -a

Question 8

which of the following best describes the concept of “port scanning” when it is performed as part of a pen test?

Answer 8

Identify services present on a system or range of systems.

Question 9

Which of the following tools was designed to query the database that holds domain registration information and is also often used during footprinting?

Answer 9

Whois

Question 10

10. Which of the following tools was designed to query the database that holds domain registration information and is also often used during footprinting?

Answer 10

whois

Question 11

11. A penetration test does not normally require formal rules of engagement.?

Answer 11

false

Question 12

12. Which of the following statements describes one of the goals of “footprinting”?

Answer 12

a. Find information which is specifically designed to passively gain information about a target.

b. to gather information about a victim without
directly interacting and potentially providing advance notice of the attack.

c. Footprinting also generally focuses on gathering information externally, from outside the target organization

Question 13

13. What is the ultimate goal of performing enumeration on a system?

Answer 13

uncovering specific information about the system itself

Question 14

14. Which file system supports a feature called Alternate data Stream that a pen tester can use to hide files?

Answer 14

a. NTFS

Question 15

Which of the following is a defining characteristic of an ethical hacker?

Answer 15

Someone who knows how hacking works and understands the dangers it poses but uses
those skills for good purposes; often known as a white-hat hacker.

Question 16

16. Which of the following is the best source for manually obtaining a target organization network range during footprinting?

Answer 16

a. IANA website at the Root Zone Database

Question 17

17. Most search engineers support the use of advanced search operators like the ones used with google Hacking

Answer 17

a. True

Question 18

18. Passive OS fingerprinting tools examine which of the following fields to try to determine a system’s OS?.

Answer 18

a. TTL, Fragment bit, Type of Service, Window size

Question 19

19. Some tcp port scan work by altering which fields in the tcp header

Answer 19

a. Flags (SYN/ACK/FIN/RST/PSH)

Question 20

20. Which of the following is installed on both windows and linux and allows the pen tester to query internet domain name servers?

Answer 20

nslookup

Question 21

What will a pen tester see, is s/he is able to surreptitiously plug into an unused switch port during a test? (select two)

Answer 21

likely be able to capture network traffic, including sensitive data and credentials, using a packet sniffer or other network analysis tool.

Additionally, the penetration tester may be able to launch further attacks against other hosts on the network, depending on the network configuration and security measures in place.
SOC will be altered

Question 22

22. What is a pen tester’s next step after performing a port scan?

Answer 22

a. Infiltration and escalation

Question 23

Which of the following activities can be performed when footprinting an organization?

Answer 23

a. Gathering information from general resources (such as Google or the organization’s website)
b. Determining the network’s logical and physical dimensions
c. Identifying active computers and devices
d. Finding open ports, active services, and access points
e. Detecting operating systems
f. Researching known vulnerabilities of running software

Question 24

Which of the following best describes an “evil twin” access point? (select two)

Answer 24

This fake access point is used to launch a man-in the-middle attack. Attackers simply place their own access points in the same area as users and attempt to get them to log on.

Question 25

26. Which of the following would NOT be considered a step is a hacking methodology?

Answer 25

These are the methods It reviews the various methods attackers use, including footprinting, port scanning, enumeration, malware, sniffers, denial of service, and social engineering.

Question 26

27. Hackers have begun working in teams so that they can achieve better results

Answer 26

True

Question 27

28. Which of the following would a pen tester NOT seek when performing enumeration on a target system?

Answer 27

Recon

Question 28

29. What is the term used for the first phase of pen test whereby the pen tester seeks to passively gain information about the target?

Answer 28

Footprinting

Question 29

What must a pen tester hope for when attempting to decrypt an AES256 encrypted document that was taken from a target system?

Answer 29

Private key

Question 30

Which of the following is one of the best places to footprint an organization's employees?

Answer 30

a. Company website

Question 31

The “ping” command cannot be used to enumerate a target system

Answer 31

flase

Question 32

33. What is the term used for an access point (AP) that was installed inside a corporate LAN by an employee and that is not administered by corporate IT?

Answer 32

Rogue access point

Question 33

34. If the number of possible keys in an encryption scheme does not necessarily make it secure, what does?

Answer 33

a. algorithm

Question 34

36. Footprinting could include viewing the HTML codes of a target website

Answer 34

true

Question 35

Which protocol does “ping” use when performing a ping sweep?

Answer 35

ICMP

Question 36

38. How do job postings that include the names and versions of software and hardware used by the company help the pen tester?

Answer 36

a. How its infrastructure is organized

Question 37

39. Thumb drive may be able to deliver malicious code if the pen tester can convince the target to insert the thumb drive into their system

Answer 37

true

Question 38

40. Which of the following types of attack would a penetration test NOT include?

Answer 38

a. Actuall types are Tech/administrative/physical