Module 5 Quiz

Question 1

One of the limitations when using ping sweeps is that many network administrators configure nodes not to respond to ICMP echo requests. What type of ICMP request is being disabled by the administrator?

Answer 1

Reply

Question 2

In any *NIX after saving a script, what command do you need to make an executable?

Answer 2

chmod +x

Question 3

An open port allows access to specific applications and cannot be vulnerable to attack. True or False.

Answer 3

False

Question 4

When a TCP three-way handshake ends, both parties send what type of packet to end the connection?

Answer 4

FIN

Question 5

Closed ports respond to a NULL scan with what type of packet?

Answer 5

RST

Question 6

Which of the following describes a program that automates a task that takes too much time to perform manually? 

Answer 6

customized script

Question 7

What open source tool is considered to be the standard port-scanning tool for security professionals?

Answer 7

nmap

Question 8

When using the text editor VIM what command appends text after the insertion point?

Answer 8

A

Question 9

What open-source network utility allows you to use plug-ins to run test programs (scripts) that can be selected from the client interface? 

Answer 9

OpenVAS

Question 10

To verify if all IP address of a network are being used by computers that are up and running, you can use a port scanner to perform what procedure on a range of IP addresses? 

Answer 10

ping sweep

Question 11

What type of port scan is similar to SYN scan and is risky to use because it relies on the attacked computer’s OS? 

Answer 11

connect

Question 12

A popular port scanner that has the ability to use a GUI front end?

Answer 12

nmap (Zenmap)

Question 13

Allows you to ping multiple IP addresses and usually included in Kali Linux

Answer 13

Fping

Question 14

What is a tool for performing ping sweeps and used to bypass filtering devices by injecting crafted or modified packets

Answer 14

Hping

Question 15

The original utility in which OpenVas was developed from

Answer 15

Nessus (RIP 🤣)

Question 16

A port state which does not allow entry or access to a service

Answer 16

closed port

Question 17

An open source fork of nessus

Answer 17

OpenVas

Question 18

A port state which may indicate a firewall is being used

Answer 18

filtered port

Question 19

These ports allow access to Applications that can be vulnerable

Answer 19

Open ports

Question 20

Allows you to scan thousands or even tens of thousands of IP address is quickly

Answer 20

Nmap

Question 21

Performed by port scanners to scan large networks to identify which IP addresses belong to active hosts

Answer 21

Ping sweep

Question 22

When security professionals create a packet, they choose a specific field to help initiate a response from the target computer. What is this called?

Answer 22

A Flag

Question 23

Which VIM command helps delete the current line

Answer 23

Dd

Question 24

Which VIM command insert text before the insertion point?

Answer 24

I

Question 25

Which VIM command overwrites the last character when in insert mode?

Answer 25

Delete key

Question 26

Which VIM command deletes the current character? 

Answer 26

X

Question 27

Which VIM command delete the current word? 

Answer 27

Dw

Question 28

Which VIM command replaces the previously deleted text? 

Answer 28

P

Question 29

Which VIM command exits and saves all changes?

Answer 29

ZZ

Question 30

Which VIM command writes changes and quits the edit session

Answer 30

Wq

Question 31

This line identifies that you are writing the file as a script

Answer 31

!/bin/sh

Question 32

What command do you use in VIM to set the value to zero? 

Answer 32

count=0

Question 33

In VIM, what condition do you need to add in order to avoid an endless loop? 

Answer 33

while

Question 34

This statement is where the script performs its main task

Answer 34

do

Question 35

This command is used to write data into a file

Answer 35

printf

Question 36

What command do you use to run your script

Answer 36

./

Question 37

What command allows you to view your .txt file

Answer 37

cat

Question 38

What type of scans are more difficult to detect, rather than sending an inordinate amount of pings or packets?

Answer 38

stealth

Question 39

A limitation of ping sweep…What type of ICMP echo message is sometimes disabled by administrators?

Answer 39

reply

Question 40

What is an nmap GUI front end?

Answer 40

Zenmap

Question 41

In a normal TCP session, The sender sends A packet to another computer with what flag set?

Answer 41

SYN

Question 42

How would an attacker make their port scans more difficult to detect? 

Answer 42

By limiting their scan speeds

Question 43

What advance port scanning tool can allow a security tester to bypass Filtering devices by injecting crafted or modified IP packets into a network? 

Answer 43

Hping

Question 44

Which of the following describes a  text file containing multiple commands that would usually be entered manually at the command prompt? 

Answer 44

script

Question 45

What network security tool usually included in Kali Linux allows a user to ping multiple IP addresses? 

Answer 45

Fping

Question 46

What port scan has FIN, PSH, and URG flag set? 

Answer 46

XMAS scan

Question 47

Port scanner that can identify which IP addresses belong to active hosts

Answer 47

Ping Sweep

Question 48

Attackers typically use ACK scans to get past firewall or filtering devices. True or false

Answer 48

True

Question 49

An open port allows access to specific applications and cannot be vulnerable to attacks. True or false

Answer 49

False

Question 50

You can search for vulnerabilities and a host by using a port scanning tool. True or false

Answer 50

True

Question 51

Port scanning is a method of finding out which services a host computer offers. True or false

Answer 51

True

Question 52

In an ACK scan, if the attacked port RETURNS a RST packet, The port is operating in what state? 

Answer 52

unfiltered

Question 53

In a NULL scan all packets are turned on. True or false

Answer 53

False

Question 54

Which of the following is a tool for creating a custom TCP/IP packet and sending it to a host computer?

Answer 54

Hping

Question 55

In basic network scanning, ICMP Echo requests type 8  are sent to host computers from the attacker who waits for which type of packet to confirm that the host computer is live?

Answer 55

ICMP echo reply type 0

Question 56

What is a potential mistake when performing a ping sweep of a net work?

Answer 56

Including a broadcast address in the ping sweep range

Question 57

A NULL scan requiree setting the FIN, ACK, and URG flags. True or False? 

Answer 57

False

Question 58

A closed port responds to a SYN packet with which of the following packets? 

Answer 58

RST

Question 59

Fping doesn’t allow pinging multiple IP address is simultaneously. True or false?

Answer 59

False

Question 60

Security testers and hackers use which of the following to determine the service is running on a host and the vulnerabilities associated with these services?

Answer 60

Port scanning

Question 61

A FIN packet sent to a close to port response with which of the following packets?

Answer 61

RST

Question 62

Which type of Port scan sends a packet with all flags turned off?

Answer 62

NULL

Question 63

To find extensive nmap information and examples of the correct syntax to use in Linux, which of the following commands should you type?

Answer 63

man nmap

Question 64

Security testers can use H ping to bypass filtering devices. True or false?

Answer 64

True

Question 65

Which command shows you a brief summary of nmap commands in a linux shell

Answer 65

nmap -h

Question 66

Why does the fping -f 193.145.85.201 193.145.85.220 command cause error?

Answer 66

An incorrect parameter is used

Question 67

Which parameter can be added to nmap to run a Script scan with the default scripts?

Answer 67

-sC

Question 68

Port scanning provides the state for all but which of the following ports?

Answer 68

Buffering