GIAC Certified Penetration Tester - GPEN Exam Practice Test
You want to use a Windows-based GUI tool which can perform MITM attacks, along with sniffing and ARP poisoning. Which of the following tools will you use?
Correct Answer: C
Vote an answer
Which of the following attacks allows an attacker to sniff data frames on a local area network (LAN) or stop the traffic altogether?
Correct Answer: D
Vote an answer
You are pen testing a Windows system remotely via a raw netcat shell. You want to get a listing of all the local users in the administrators group, what command would you use?
Correct Answer: D
Vote an answer
Anonymizers are the services that help make a user's own Web surfing anonymous. An anonymizer removes all the identifying information from a user's computer while the user surfs the Internet. It ensures the privacy of the user in this manner. After the user anonymizes a Web access with an anonymizer prefix, every subsequent link selected is also automatically accessed anonymously. Which of the following are limitations of anonymizers?
Each correct answer represents a complete solution. Choose all that apply.
Each correct answer represents a complete solution. Choose all that apply.
Correct Answer: A,B,C,D,E
Vote an answer
The employees of CCN Inc. require remote access to the company's proxy servers. In order to provide solid wireless security, the company uses LEAP as the authentication protocol. Which of the following is supported by the LEAP protocol?
Each correct answer represents a complete solution. Choose all that apply.
Each correct answer represents a complete solution. Choose all that apply.
Correct Answer: A,D
Vote an answer
Analyze the command output below, what action is being performed by the tester?
Correct Answer: C
Vote an answer
Which of the following best describes a server side exploit?
Correct Answer: D
Vote an answer
Which of the following tools is a wireless sniffer and analyzer that works on the Windows operating system?
Correct Answer: C
Vote an answer
What command will correctly reformat the Unix passwordcopy and shadowcopy Tiles for input to John The Ripper?
Correct Answer: C
Vote an answer
Which type of Cross-Sire Scripting (XSS> vulnerability is hardest for automated testing tools to detect, and for what reason?
Correct Answer: C
Vote an answer
GSM uses either A5/1 or A5/2 stream cipher for ensuring over-the-air voice privacy. Which of the following cryptographic attacks can be used to break both ciphers?
Correct Answer: B
Vote an answer
Which of the following ports must you filter to check null sessions on your network?
Correct Answer: B
Vote an answer
Which of the following syntaxes is the correct syntax for the master.dbo.sp_makewebtask procedure?
Correct Answer: B
Vote an answer
You have been contracted to penetration test an e-mail server for a client that wants to know for sure if the sendmail service is vulnerable to any known attacks. You have permission to run any type of test, how will you proceed to give the client the most valid answer?
Correct Answer: B
Vote an answer
You run the following PHP script:
<?php $name = mysql_real_escape_string($_POST["name"]);
$password = mysql_real_escape_string($_POST["password"]);?>
What is the use of the mysql_real_escape_string() function in the above script.
Each correct answer represents a complete solution. Choose all that apply
<?php $name = mysql_real_escape_string($_POST["name"]);
$password = mysql_real_escape_string($_POST["password"]);?>
What is the use of the mysql_real_escape_string() function in the above script.
Each correct answer represents a complete solution. Choose all that apply
Correct Answer: A,B
Vote an answer