CH 6 - Enumeration

Question 1

What are RPCs primarily used for?

A. Interprocess communications
B. Interprocess semaphores
C. Remote method invocation
D. Process demand paging

Answer 1

A.
Interprocess communications

Question 2

What would you be trying to enumerate if you were to use enum4linux?

A. Procedures
B. Linux-based services
C. Shares and/or users
D. Memory utilization

Answer 2

C.
Shares and/or users

Question 3

How do you authenticate with SNMPv1?

A. Username / password
B. Hash
C. Public string
D. Community string

Answer 3

D.
Community string

Question 4

What SMTP command would you use to get the list of users in a mailing list?

A. EXPD
B. VRFY
C. EXPN
D. VRML

Answer 4

C.
EXPN

Question 5

What type of enumeration would you use the utility dirb for?

A. Directory listings
B. Directory enumeration
C. Brute-force dialing
D. User directory analysis

Answer 5

B.
Directory enumeration

Question 6

What are data descriptions in SNMP called?

A. Management‐based information
B. Data structure definition
C. Extensible markup language
D. Management information base

Answer 6

D.
Management information base

Question 7

What is the process Java programs identify themselves to if they are sharing procedures over the network?

A. RMI registry
B. RMI mapper
C. RMI database
D. RMI process

Answer 7

A.
RMI registry

Question 8

You are working with a colleague, and you see them interacting with an email server using the VRFY command. What is it your colleague is doing?

A. Verifying SMTP commands
B. Verifying mailing lists
C. Verifying email addresses
D. Verifying the server config

Answer 8

C.
Verifying email addresses

Question 9

What is the SMB Protocol used for?

A. Data transfers using NFS
B. Data transfers on Windows systems
C. Data transfers for email attachments
D. Data transfers for Windows Registry updates

Answer 9

B.
Data transfers on Windows systems

Question 10

Which of these is a built‐in program on Windows for gathering information using SMB?

A. nmblookup
B. smbclient
C. Metasploit
D. nbtstat

Answer 10

D.
nbtstat

Question 11

What status code will you get if your attempt to use the VRFY command fails?

A. 550
B. 501
C. 250
D. 200

Answer 11

A.
550

Question 12

What program would you use to enumerate services?

A. smbclient
B. nmap
C. enum4linux
D. snmpwalk

Answer 12

B.
nmap

Question 13

Which version of SNMP introduced encryption and user‐based authentication?

A. 1
B. 2
C. 2c
D. 3

Answer 13

D.
3

Question 14

Which of these could you enumerate on a WordPress site using wpscan?

A. Plugins
B. Posts
C. Administrators
D. Versions

Answer 14

A.
Plugins

Question 15

Which of these tools allows you to create your own enumeration function based on ports being identified as open?

A. Metasploit
B. nmap
C. Netcat
D. nbtstat

Answer 15

B.
nmap

Question 16

What underlying functionality is necessary to enable Windows file sharing?

A. Network File System
B. Common Internet File System
C. Remote Procedure call
D. Remote method invocation

Answer 16

C.
Remote Procedure call

Question 17

What is the IPC$ share used for?

A. Process piping
B. Interprocess construction
C. Remote process management
D. Interprocess communication

Answer 17

D.
Interprocess communication

Question 18

What tool does a Java program need to use to implement remote process communication?

A. JRE
B. rmic
C. rmir
D. JDK

Answer 18

B.
rmic

Question 19

Which of these passes objects between systems?

A. SunRPC
B. SMB
C. RMI
D. nmap

Answer 19

C.
RMI

Question 20

If you needed to enumerate data across multiple services and also store the data for retrieval later, what tool would you use?

A. Metasploit
B. nmap
C. RMI
D. Postgres

Answer 20

A.
Metasploit

Question 21

Which SMTP command would be easiest to disable to prevent attackers from misusing it for enumeration?

A. MAIL FROM
B. RCPT TO
C. DATA
D. VRFY

Answer 21

D.
VRFY

Question 22

Which version of SNMP should network administrators be running?

A. V1
B. V2
C. V3
D. V4

Answer 22

C.
V3

Question 23

Which of these is not a way to protect against enumeration with SMB?

A. Implement the latest NetBIOS patches
B. Disable SMB
C. Use network firewalls
D. Disable sharing

Answer 23

A.
Implement the latest NetBIOS patches

Question 24

Which Metasploit module would you use to take advantage of potentially weaker permissions on an end user’s workstation?

Answer 24

D.
auxiliary / scanner / smb / smb_enumshares

Question 25

Which security technology could you use to protect against enumeration on services?

A. Intrusion detection system (IDS)
B. Host‐based firewall
C. Endpoint Detection and Response (EDR)
D. Anti‐malware

Answer 25

B.
Host‐based firewall