John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He has successfully performed the following steps of the preattack phase to check the security of the We-aresecure network:
Gathering information Determining the network range Identifying active systems
Now, he wants to find the open ports and applications running on the network. Which of the following tools will he use to accomplish his task?
A. APNIC
B. SuperScan
C. ARIN
D. RIPE
Which of the following are the countermeasures against WEP cracking? Each correct answer represents a part of the solution. Choose all that apply.
A. Using the longest key supported by hardware.
B. Using a 16 bit SSID.
C. Changing keys often.
D. Using a non-obvious key.
Which of the following is the correct sequence of packets to perform the 3-way handshake method?
A. SYN, ACK, ACK
B. SYN, ACK, SYN/ACK
C. SYN, SYN/ACK, ACK
D. SYN, SYN, ACK
Which of the following is NOT a Back orifice plug-in?
A. BOSOCK32
B. STCPIO
C. BOPeep
D. Beast
Which of the following nmap switches is used to perform ICMP netmask scanning?
A. -PM
B. -PB
C. -PI
D. -PS
Which of the following tasks is NOT performed into the enumeration phase?
A. Discovering NetBIOS names
B. Obtaining Active Directory information and identifying vulnerable user accounts
C. Injecting a backdoor to the remote computer to gain access in it remotely
D. Establishing NULL sessions and queries
Which of the following tools is based on the SATAN tool?
A. Retina
B. Internet scanner
C. GFI LANguard
D. SAINT
Which of the following is an open source Web scanner?
A. Nikto
B. GFI LANguird
C. NetRecon
D. Internet scanner
Which of the following statements about Fport is true?
A. It works as a process viewer.
B. It works as a datapipe on Windows.
C. It works as a datapipe on Linux.
D. It is a source port forwarder/redirector.
Which of the following event logs contains traces of brute force attempts performed by an attacker?
A. SysEvent.Evt
B. WinEvent.Evt
C. AppEvent.Evt
D. SecEvent.Evt
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only GIAC exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your GPEN exam preparations and GIAC certification application, do not hesitate to visit our Vcedump.com to find your solutions here.