Question 1

Which of the following describes a text file containing multiple commands that would usually be entered manually at the command prompt?&#10;A) script&#10;B) port-scanner&#10;C) application&#10;D) configuration file

Accepted Answer

A script is a file containing multiple commands that can be executed in a batch rather than entering each command manually at the command prompt. The other options do not fit this description.

Question 2

If an attacker decides to implement a less obvious port-scan,or stealth attack,which of the following techniques would be appropriate to make their activities more difficult to detect?&#10;A) increase their scan speeds&#10;B) limit their tool set&#10;C) increase their scan speeds&#10;D) limit their scan speeds

Accepted Answer

The best choice to make a stealth attack more difficult to detect is to limit the scan speeds. This will make it harder for network intrusion detection systems to detect the scan activity as it will appear more like legitimate network traffic. Increasing the scan speeds or limiting the tool set may actually make the attacker more noticeable as it could generate more network traffic or use suspicious tools that are commonly associated with malicious activity.

Question 3

Which of the following describes a flexible program that automates a task that takes too much time to perform manually?&#10;A) Nmap&#10;B) open source utility&#10;C) customized script&#10;D) Fping

Accepted Answer

A customized script is specifically designed to automate a particular task or set of tasks that would take too much time to perform manually. This type of program can be tailored to meet the exact needs of the user and can be updated as needed. Nmap, Fping, and open source utilities are all examples of software applications, but they do not necessarily provide the level of flexibility and customization that a customized script can offer.

Question 4

What advanced port-scanning tool can allow a security tester to bypass filtering devices by injecting crafted or otherwise modified IP-packets into a network?&#10;A) Hping&#10;B) NetTools&#10;C) Nessus&#10;D) Nmap

Accepted Answer

Hping allows a security tester to craft or modify IP packets and send them out on the network. This can help to bypass filtering devices in order to find open ports on a target system. Nessus and Nmap are both port-scanning tools, but they do not have the same level of packet manipulation capabilities as Hping. NetTools is not typically used for advanced port scanning or packet manipulation.

Question 5

Attackers typically use ACK scans to get past a firewall or other filtering devices.

Accepted Answer

ACK scans are used to determine if a firewall or filtering device is present and which ports may be open for communication. Attackers use this information to bypass the security measures in place and gain access to a network.

Question 6

When security professionals create a packet,they may choose to specifically set which of the following fields to help initiate a response from a target computer?&#10;A) box&#10;B) flag&#10;C) open&#10;D) id

Accepted Answer

The field that security professionals may choose to specifically set to help initiate a response from a target computer is the flag field. This field contains various bits that can be toggled to request specific actions or indicate particular conditions to the recipient computer. For example, setting the SYN bit in the flag field can initiate a TCP handshake, while setting the RST bit can indicate that a connection should be terminated immediately.

Question 7

What open-source network utility allows you to use plug-ins to run test programs (scripts)that can be selected from the client interface?&#10;A) Uniscan&#10;B) Fping&#10;C) Nessus&#10;D) OpenVAS

Accepted Answer

OpenVAS allows the use of plug-ins which are essentially scripts that can be selected and run from the client interface. Uniscan, Fping, and Nessus do not have this feature.

Question 8

What type of port scan has the FIN,PSH,and URG flags set?&#10;A) NULL scan&#10;B) connect scan&#10;C) XMAS scan&#10;D) ACK scan

Accepted Answer

A FIN/PSH/URG scan is also known as an XMAS scan. This type of port scan sets the FIN, PSH, and URG flags in the TCP header to determine which ports are open on a target system. This scan is considered stealthy because it does not set any of the standard flags (SYN, ACK, or RST), which could trigger a response from a firewall or intrusion detection system.

Question 9

An open port allows access to specific applications and cannot be vulnerable to attack.

Accepted Answer

An open port allows access to specific applications, but it can also be vulnerable to attack if it is not properly secured or configured. Attackers can use open ports to gain unauthorized access to a network or system, so it is important to carefully manage and monitor them.

Question 10

What open source port-scanning tool is considered to be the standard port-scanning tool for security professionals?&#10;A) NULL&#10;B) NMap&#10;C) NScanner&#10;D) PortGhost

Accepted Answer

NMap is considered to be the standard port-scanning tool for security professionals due to its robustness, flexibility, and extensive feature set. It is actively developed and maintained, supports a wide range of operating systems, protocols, and scan types, and has a large user community providing support and sharing knowledge. Additionally, NMap can be extended and customized via scripts and plugins, making it a versatile tool for both simple and complex scanning tasks.

Question 11

You can search for vulnerabilities in a host computer by using a port-scanning tool.

Accepted Answer

The answer of You can search for vulnerabilities in a...

Question 12

What network security tool,usually included with Kali Linux,allows a user to ping multiple IP addresses?&#10;A) Nmap&#10;B) Fping&#10;C) Tcpdump&#10;D) Nessus

Accepted Answer

The answer of What network security tool,usually included with Kali...

Question 13

Closed ports respond to a NULL scan with what type of packet?&#10;A) RST&#10;B) SYN&#10;C) Ping&#10;D) ACK

Accepted Answer

The answer of Closed ports respond to a NULL scan...

Question 14

In a normal TCP session,the sender sends a packet to another computer with which of the following flags set?&#10;A) SYN/ACK flag&#10;B) SYN flag&#10;C) No flag&#10;D) Reset flag

Accepted Answer

The answer of In a normal TCP session,the sender sends...

Question 15

In a NULL scan,all packet flags are turned on.

Accepted Answer

The answer of In a NULL scan,all packet flags are...

Question 16

Port scanning is a method of finding out which services a host computer offers.

Accepted Answer

The answer of Port scanning is a method of finding...

Question 17

When a TCP three-way handshake ends,both parties send what type of packet to end the connection?&#10;A) SYN&#10;B) ACK&#10;C) FIN&#10;D) RST

Accepted Answer

The answer of When a TCP three-way handshake ends,both parties...

Question 18

In an ACK scan,if the attacked port returns an RST packet the attacked port is considered to be operating in what state?&#10;A) open&#10;B) closed&#10;C) unfiltered&#10;D) unassigned

Accepted Answer

The answer of In an ACK scan,if the attacked port...

Question 19

What type of port scan is similar to a SYN scan and is risky to use because it relies on the attacked computer's OS?&#10;A) XMAS&#10;B) ACK&#10;C) NULL&#10;D) Connect

Accepted Answer

The answer of What type of port scan is similar...

Question 20

When using a port-scanner,what procedure can be conducted to identify which IP addresses belong to active hosts?&#10;A) ping sweep&#10;B) ping check&#10;C) network sweep&#10;D) ICMP probing

Accepted Answer

The answer of When using a port-scanner,what procedure can be...

Question 21

Nmap has a GUI front end that makes it easier to work with some of the complex options by providing a GUI.Which of the following is the Nmap GUI front end?&#10;A) Nmap GUI&#10;B) Fping&#10;C) Zenmap&#10;D) Hping

Accepted Answer

The answer of Nmap has a GUI front end that...

Question 22

In a Linux script,which of the lines is important because it identifies the file as a script?&#10;A) #!/bin/sh&#10;B) #!/bin/script&#10;C) #!/bin/shscript&#10;D) #!/bin/sc

Accepted Answer

The answer of In a Linux script,which of the lines...

Question 23

Explain why an attacker typically uses an ACK scan to bypass a firewall?

Accepted Answer

The answer of Explain why an attacker typically uses an...

Question 24

Which statement is where the script performs its main task?&#10;A) do&#10;B) while&#10;C) count&#10;D) bin

Accepted Answer

The answer of Which statement is where the script performs...

Question 25

What makes the OpenVAS tool flexible and unique?

Accepted Answer

The answer of What makes the OpenVAS tool flexible and...

Question 26

When writing a script which statement allows you to avoid creating an endless loop in your script?&#10;A) count&#10;B) while&#10;C) bin&#10;D) do

Accepted Answer

The answer of When writing a script which statement allows...

Question 27

What is a UDP scan?

Accepted Answer

The answer of What is a UDP scan?...

Question 28

Some attackers want to be hidden from network devices or IDSs that recognize an inordinate amount of pings or packets being sent to their networks.Which of the following attacks are more difficult to detect?

A) stealth
B) silent
C) planned
D) covert

Accepted Answer

The answer of Some attackers want to be hidden from...

Question 29

Why is it important for a security tester to be able to use Nmap?

Accepted Answer

The answer of Why is it important for a security...

Question 30

How does a SYN scan work?

Accepted Answer

The answer of How does a SYN scan work?...

Question 31

If subnetting is used in an organization,why should you be extra cautious when performing ping sweeps?

Accepted Answer

The answer of If subnetting is used in an organization,why...

Question 32

Which ports should security professionals scan when doing a test?

Accepted Answer

The answer of Which ports should security professionals scan when...

Question 33

To verify if all the IP addresses of a network are being used by computers that are up and running,you can use a port scanner to perform what procedure on a range of IP addresses?&#10;A) ping&#10;B) tracert&#10;C) Nmap&#10;D) port filtering

Accepted Answer

The answer of To verify if all the IP addresses...

Question 34

Why is it important for you as a security tester to understand and be able to create scripts?

Accepted Answer

The answer of Why is it important for you as...

Question 35

In any *NIX system,after saving a script named &#34;script_name,&#34; you need to make it executable so that you can run it.Which command will accomplish this task from the command line?&#10;A) chmod +execute script_name&#10;B) chmod +x script_name&#10;C) chmod -execute script_name&#10;D) chmod -x script_name

Accepted Answer

The answer of In any *NIX system,after saving a script...

Question 36

Why is port scanning useful for hackers?

Accepted Answer

The answer of Why is port scanning useful for hackers?...

Question 37

One of the limitations when using &#34;ping sweeps&#34; is that many network administrators configure nodes not to respond to ICMP Echo Requests.What type of ICMP Echo message is being disabled by these administrators?&#10;A) ping&#10;B) test&#10;C) acknowledge&#10;D) reply

Accepted Answer

The answer of One of the limitations when using &#34;ping...

Question 38

Which vi command deletes the current line?&#10;A) D&#10;B) dl&#10;C) Dd&#10;D) Dw

Accepted Answer

The answer of Which vi command deletes the current line?&#10;A)...

Question 39

When using the text editor vim what command appends text after the insertion point?&#10;A) X&#10;B) A&#10;C) Delete Key&#10;D) ZZ

Accepted Answer

The answer of When using the text editor vim what...

Question 40

What are the problems with depending on ping sweeps to find out which hosts are &#34;live&#34;?

Accepted Answer

The answer of What are the problems with depending on...

Question 41

Match each item with a statement below.a.Nmap
b.Fping
c.Hping
d.Nessus
e.closed port
f.OpenVAS
g.filtered port
h.open port
i.port scanning
j.ping sweep
Allows you to ping multiple IP addresses simultaneously and is usually included in Kali Linux

Accepted Answer