Practice

Question 1

Where is the SAM file located on a Windows 7 machine?

Answer 1

c:\windows\system32\config c:\ windows\repair

Question 2

At what stage does session hijacking occur?

Answer 2

After the three way handshake

Question 3

Where is the hosts file located on a Windows 7 machine?

Answer 3

c:\windows\system32\drivers\etc

Question 4

A ping consists of an ECHO request, what is the ICMP code?

Answer 4

Type 8, code 0

Question 5

What ICMP message will this machine return due to a ping?

Answer 5

Type 0, code 0

Question 6

What is the port number for RPC?

Answer 6

135 TCP

Question 7

What is the port number for DHCP?

Answer 7

67 UDP

Question 8

What is the port number for NTP?

Answer 8

123 UDP

Question 9

What is the purpose of ICMP Type 3 message?

Answer 9

used for unreachable messages

Question 10

What is the purpose of ICMP Type 11 message?

Answer 10

Time exceeded

Question 11

What is the pirpose of ICMP Type 13 message?

Answer 11

Timestamp

Question 12

What is the purpose of ICMP Type 17 message?

Answer 12

Subnet mask request

Question 13

nmap -sO

Answer 13

IP protocol scan

Question 14

nmap -sP

Answer 14

ping scan

Question 15

nmap -sT

Answer 15

TCP Connect scan

Question 16

nmap -sI

Answer 16

IDLE scan

Question 17

nmap  -sP

Answer 17

to see which IP addresses are currently active on a network.

Question 18

nmap  -sV

Answer 18

Probe open ports to determine service/version info.

Question 19

nmsp  -A

Answer 19

Enable OS detection, version detection, script scanning, and traceroute.

Question 20

All scans return an______ on a closed port, with the exception of the _____ scan, which returns no response.

Answer 20

RST ACK

Question 21

XMAS, FIN, NUL on open port response is

Answer 21

no response

Question 22

XMAS, FIN, NUL on closed port response is

Answer 22

RST/ACK

Question 23

ACK responses on open port is

Answer 23

RST

Question 24

What port SNMP uses?

Answer 24

161 UDP

Question 25

The syntax to add a MAC address is

Answer 25

arp -s ipaddress macaddress

Question 26

In Wireshark, to display only those packets with the specified source IP address

Answer 26

ip.src == ipaddress

Question 27

what is IP Tables?

Answer 27

used to control network traffic and also perform stateful firewall inspection of traffic going into and out of the DMZ.

Question 28

What is IPchains?

Answer 28

used to configure rules limiting access to only specific IP addresses that are trusted.

Question 29

802.11a

Answer 29

54Mbps, 5GHZ OFDM

Question 30

802.11b

Answer 30

11Mbps, 2.4GHS DSSS

Question 31

802.11g

Answer 31

54Mbps, 2.4GHz OFDM and DSSS

Question 32

802.11n

Answer 32

100+Mbps, 2.4-5GHz OFDM

Question 33

NetStumbler detects

Answer 33

802.11a, b, and g

Question 34

Known plain-text attack

Answer 34

the hacker has both plain-text and corresponding cipher-text messages

Question 35

Chosen-plain text

Answer 35

attacker knows the algorithm used or have access to the machine used to determine the key. Used in PKI.

Question 36

Human-based social engineering

Answer 36

face-to-face, telephone contact, dumpster diving, impersonating, technical support, shoulder surfing, and Tailgating and piggybacking.

Question 37

Computer-based social engineering

Answer 37

phishing, pop-ups, IRC channel.

Question 38

Who is Insider associate?

Answer 38

someone with limited authorized access, like a contractor, guard, or cleaning services person.

Question 39

Who is Inside Affiliate?

Answer 39

a spouse, friend, or client of an employee who uses the employee’s credentials to gain access.

Question 40

Sam Spade is used for

Answer 40

footprinting, zone transfer

Question 41

What flags are set in a X-MAS scan? (Choose all that apply).

Answer 41

FIN, PSH, URG

Question 42

SOA records 200302028 86400 900 1209600 3600 What is the purpose of 200302028?

Answer 42

the serial number (revision #). number 1

Question 43

SOA records 200302028 86400 900 1209600 3600 What is the purpose of 86400?

Answer 43

refresh interval number 2

Question 44

SOA records 200302028 86400 900 1209600 3600 What is the purpose of 900?

Answer 44

retry time number 3

Question 45

SOA records 200302028 86400 900 1209600 3600 What is the purpose of 1209600?

Answer 45

Expiry time number 4 - Zone is deadand stop responding to queries

Question 46

SOA records 200302028 86400 900 1209600 3600 What is the purpose of 3600?

Answer 46

TTL for the zone. number 5

Question 47

FIN = ? SYN = ? RST = ? PSH = ? ACK = ? URG = ?

Answer 47

FIN = 1 SYN = 2 RST = 4 PSH = 8 ACK = 16 URG = 32

Question 48

What are the five registrant bodies?

Answer 48

ARIN, APNIC, RIPE, LACNIC, AfriNIC **American Registry for Internet Numbers (ARIN**) Canada, many Caribbean and North Atlantic islands, and the United States. **Asia-Pacific Network Information Center (APNIC)** Asia and Pacific. Réseaux IP Européens (RIPE) NCC Europe, Middle East, and parts of Central Asia/Northern Africa. **Latin America and Caribbean Network Information Center (LACNIC)** Latin America and the Caribbean. **African Network Information Center (AfriNIC) Africa.**