Review 6

Question 1

Which tool mainly focuses on pre-exploitation and post-exploitation pentesting tasks?

Question options:

Superscan

nmap

PsTools

Metasploit

Answer 1

Metasploit

Question 2

Which of the following statements is true regarding the “enumeration” phase of ethical hacking.

Question options:

Unlike the more passive phases of reconnaissance and scanning, we are moving into a more active approach to information gathering.

All of these are true regarding the enumeration phase.

The odds of getting caught are still very low.

You’re at the point where your actions are still considered to be legal.

Answer 2

Unlike the more passive phases of reconnaissance and scanning, we are moving into a more active approach to information gathering.

Question 3

Which Linux command provides information about a user?

Question options:

netuser

finger

cat

poke

Answer 3

finger

Question 4

All releases after Windows 2000 use this group to grant permissions to the creator of the file or directory.

Question options:

Creator owner

Administrators

Creator group

Users

Answer 4

Creator owner

Question 5

Which port is used by SMB over TCP?

Question options:

53

135

445

137

Answer 5

445

Question 6

Which port is used by the RPC service in Windows for client/server communications?

Question options:

135

445

137

53

Answer 6

135

Question 7

Which Metasploit term refers to a packet containing code that helps you achieve the goal of exploiting a vulnerability?

Question options:

Payload

Exploit

Vulnerability

CVE

Answer 7

Payload

Question 8

How many configuration passwords does SNMP have by default?

Question options:

3

2

0

1

Answer 8

2

Question 9

Which Windows built-in account provides almost unlimited access to the local machine?

Question options:

Admin service

Local service

System

Network service

Answer 9

System

Question 10

How many primary user accounts are included in a default Windows installation?

Question options:

1

2

0

3

Answer 10

2

Question 11

Which of the following is NOT a DNS countermeasure?

Question options:

Disable DNS zone transfers

Utilize split DNS

Utilize digital signatures

DNS zone restrictions

Answer 11

Disable DNS zone transfers

Question 12

What protocols does IPsec use to secure communications between VPN endpoints?

Question options:

AH, AES, ESP

AES, IKE, MD5

ESP, AH, MD5

ESP, AH, IKE

Answer 12

ESP, AH, IKE

Question 13

Which port is used for FTP?

Question options:

25

21

23

53

Answer 13

21

Question 14

Which of the following is NOT an SNMP countermeasure?

Question options:

Monitor SNMP ports

Create SNMP agents.

Change default passwords.

Run SNSscan

Answer 14

Create SNMP agents

Question 15

What is the best way to secure LDAP?

Question options:

Block LDAP port 389.

Require password exchanges for all LDAP queries.

Block non-query LDAP ports.

Review and implement the security settings and services available with your server software.

Answer 15

Review and implement the security settings and services available with your server software.