Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

CompTIA CySa+ > Commands - Chapter 3, Reconnaissance and Intelligence > Flashcards

Commands - Chapter 3, Reconnaissance and Intelligence Flashcards

Mapping, Enumeration and Passive Footprinting commands

1
Q

Which nmap commands grabs banners? What can you identify from this?

A

nmap -sV

services and their versions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What hping parameter is used to set the port to which t send the ping? Set it to port 54

A

hping -p 54 x.x.x.x

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

describe what the following hping command will do

hping -p 80 -S 192.168.1.100

A

this will send TCP Syn packets to port 80 on the destination IP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

what command could help you to find out the OS of IP 192.168.1.1?

A

nmap -O 192.168.1.1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Scan 192.168.1.1 for non-TCP service

A

nmap -sU 192.168.1.1 (U for UDP)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

carry out a Connect scan on 192.168.1.1

A

nmap -sT 192.168.1.1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

you want a quick and unobtrusive method to scan IP 192.168.1.1, which command do you use?

A

nmap - sS 192.168.1.1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

what will the “-o” netstat command switch get you?

A

process ID’s for each connection.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

you want to get the ethernet statistics on how many bytes and packets have been sent and received, which netstat switch will give you this?

A

netstat -e

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

get routing table information from the netstat command

A

netstat -nr

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

get routing table information from the netstat command

A

netstat -nr

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

type out the linux command that will get you the DHCP log

A

journalctl

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

journalctl gives you what?

A

the linux dhcp logs

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

most configuration files are stored in which directory in linux?

A

/etc

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

most log files are stored in which directory?

A

/var/log

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

List the 5 types of Windows event logs

A 
Application logs
security logs
system logs
setup logs
forward events logs
17
Q

which windows event logs will capture resource and rights usage and files being opened, created or deleted?

A

security logs

18
Q

which windows event log captures login events?

A

security logs

19
Q

which windows event logs captures events collected from remote computers?

A

forwarded event logs

20
Q

Why are windows event logs not routinely obtained during reconnaissance?

A

because they’re stored in a secure location requiring admin system access to get at

21
Q

what activity can obtain the SOA record, the wait time between name changes, minimum TTL for the domain and primary name servers?

A

DNS zone transfers

22
Q

What linux command can get the email servers of a host as well as its IPv4 and 6 information?

23
Q

Which command displays list of active connections and the associated executables? What doesn’t it show?

A

netstat

doesn’t show UDP connections as they are ‘connectionless’

CompTIA CySa+ (4 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions