• Home
  • Articles
  • Updated Jan-2024 GPEN Exam Practice Test Questions [Q28-Q48]

Updated Jan-2024 GPEN Exam Practice Test Questions [Q28-Q48]

Share

Updated Jan-2024 GPEN Exam Practice Test Questions

Verified GPEN dumps Q&As 100% Pass in First Attempt Guaranteed Updated Dump


To prepare for the exam, candidates can attend training courses offered by GIAC authorized training partners or self-study using books, online resources, and practice exams. GPEN exam consists of 115 multiple-choice questions and must be completed within 3 hours. A passing score of 74% or higher is required to earn the GPEN certification.

 

NEW QUESTION # 28
A tester has been contracted to perform a penetration test for a corporate client. The scope of the test is limited to end-user workstations and client programs only. Which of die following actions is allowed in this test?

  • A. Sniffing and attempting to crack the Domain Administrators password hash.
  • B. Attempting to redirect the internal gateway through ARP poisoning
  • C. Sending a malicious pdf to a user and exploiting a vulnerable Reader version.
  • D. Activating bot clients and performing a denial-of-service against the gateway.

Answer: D


NEW QUESTION # 29
One of the sales people in your company complains that sometimes he gets a lot of unsolicited messages on his PDA. After asking a few questions, you determine that the issue only occurs in crowded areas like airports.
What is the most likely problem?

  • A. Spam
  • B. Blue jacking
  • C. A virus
  • D. Blue snarfing

Answer: B

Explanation:
Section: Volume C


NEW QUESTION # 30
While reviewing traffic from a tcpdump capture, you notice the following commands being sent from a remote system to one of your web servers:
C:\>sc winternet.host.com create ncservicebinpath- "c:\tools\ncexe -I -p 2222 -e cmd.exe" C:\>sc vJnternet.host.com query ncservice.
What is the intent of the commands?

  • A. The first command creates a backdoor shell as a service. It is being started on UDP2222 using cmd.exe. The second command verifies the service is created and itsstatus.
  • B. The first command creates a backdoor shell as a service. It is being started on TCP2222 using cmd.exe. The second command verifies the service is created and itsstatus.
  • C. The first command verifies the service is created and its status. The secondcommand creates a backdoor shell as a service. It is being started on TCP 2222connected to cmd.exe.
  • D. This creates a service called ncservice which is linked to the cmd.exe command andits designed to stop any instance of nc.exe being run. The second command verifiesthe service is created and its status.

Answer: D


NEW QUESTION # 31
The 3-way handshake method is used by the TCP protocol to establish a connection between a client and the server. It involves three steps:
1.In the first step, a SYN message is sent from a client to the server.
2.In the second step, a SYN/ACK message is sent from the server to the client.
3.In the third step, an ACK (usually called SYN-ACK-ACK) message is sent from the client to the server. At this point, both the client and the server have received acknowledgements of the TCP connection.
If the Initial Sequence Numbers of the client and server were 241713111 and 241824111 respectively at the time when the client was sending the SYN message in the first step of the TCP 3-way handshake method, what will be the value of the acknowledgement number field of the server's packet when the server was sending the SYN/ACK message to the client in the second step of the TCP 3-way handshake method?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: A


NEW QUESTION # 32
What is the purpose of the following command?
C:\>wmic /node:[target IP] /user:[admin-user]
/password:[password] process call create [command]

  • A. Running a command on a remote Windows machine
  • B. Listing the running processes on a remote windows machine
  • C. Creating an admin account on a remote Windows machine
  • D. Creating a service on a remote Windows machine

Answer: B


NEW QUESTION # 33
CORRECT TEXT
Fill in the blank with the appropriate word.
_______ is a utility that encrypts the hashed password information in a SAM database in a Windows system using a 128-bit encryption key.

Answer:

Explanation:
SYSKEY


NEW QUESTION # 34
192.168.116.9 Is an IP address forvvww.scanned-server.com. Why are the results from the two scans, shown below, different?

  • A. John.ini
  • B. John.pot
  • C. John.rec
  • D. John conf

Answer: C

Explanation:
Section: Volume A


NEW QUESTION # 35
Which of the following Web authentication techniques uses a single sign-on scheme?

  • A. NTLM authentication
  • B. Basic authentication
  • C. Microsoft Passport authentication
  • D. Digest authentication

Answer: C

Explanation:
Section: Volume D


NEW QUESTION # 36
Which of the following tools can be used for session splicing attacks?

  • A. Whisker
  • B. ARIN
  • C. ADMutate
  • D. APNIC

Answer: A


NEW QUESTION # 37
You want to search the Apache Web server having version 2.0 using google hacking. Which of the following search queries will you use?

  • A. intitle:test.page "Hey, it worked !" "SSl/TLS aware"
  • B. intitle:Sample.page.for.Apache Apache.Hook.Function
  • C. intitle:"Test Page for Apache Installation" "It worked!"
  • D. intitle:"Test Page for Apache Installation" "You are free"

Answer: B


NEW QUESTION # 38
Your company has decided that the risk of performing a penetration test Is too great. You would like to figure out other ways to find vulnerabilities on their systems, which of the following is MOST likely to be a valid alternative?

  • A. Configuration Reviews
  • B. Network scope Analysis
  • C. Baseline Data Reviews
  • D. Patch Policy Review

Answer: B


NEW QUESTION # 39
In which of the following attacks does the attacker overload the CAM table of the switch?

  • A. ARP poisoning
  • B. Mac flooding
  • C. Man-in-the-middle attack
  • D. Monkey-in-the-middle attack

Answer: B


NEW QUESTION # 40
LM hash is one of the password schemes that Microsoft LAN Manager and Microsoft Windows versions prior to the Windows Vista use to store user passwords that are less than 15 characters long. If you provide a password seven characters or less, the second half of the LM hash is always _________.

  • A. 0xAAD3B435B51404FF
  • B. 0xAAD3B435B51404EE
  • C. 0xBBC3C435C51504EF
  • D. 0xBBD3B435B51504FF

Answer: B


NEW QUESTION # 41
You have detected what appears to be an unauthorized wireless access point on your network.
However this access point has the same MAC address as one of your real access points and is broadcasting with a stronger signal. What is this called?

  • A. DOS
  • B. Buesnarfing
  • C. WAP cloning
  • D. The evil twin attack

Answer: D


NEW QUESTION # 42
What is the impact on pre-calculated Rainbow Tables of adding multiple salts to a set of passwords?

  • A. Salts increases the time to crack the original password by increasing the number oftables that must be calculated.
  • B. Salts have little effect because they can be calculated on the fly with applicationssuch as Ophcrack.
  • C. Salts double the total size of a rainbow table database.
  • D. Salts can be reversed or removed from encoding quickly to produce unsaltedhashes.

Answer: C


NEW QUESTION # 43
You work as a Penetration Tester for the Infosec Inc. Your company takes the projects of security auditing.
Recently, your company has assigned you a project to test the security of the we-aresecure. com Website. The we-are-secure.com Web server is using Linux operating system. When you port scanned the we-are- secure.com Web server, you got that TCP port 23, 25, and 53 are open. When you tried to telnet to port 23, you got a blank screen in response. When you tried to type the dir, copy, date, del, etc. commands you got only blank spaces or underscores symbols on the screen. What may be the reason of such unwanted situation?

  • A. The telnet service of we-are-secure.com has corrupted.
  • B. The telnet session is being affected by the stateful inspection firewall.
  • C. The we-are-secure.com server is using a TCP wrapper.
  • D. The we-are-secure.com server is using honeypot.

Answer: C

Explanation:
Section: Volume C


NEW QUESTION # 44
You want to run the nmap command that includes the host specification of 202.176.56-57.*. How many hosts will you scan?

  • A. 0
  • B. 1
  • C. 2
  • D. 3

Answer: A

Explanation:
Section: Volume B


NEW QUESTION # 45
Which of the following functions can you use to mitigate a command injection attack?
Each correct answer represents a complete solution. Choose all that apply.

  • A. htmlentities()
  • B. escapeshellarg()
  • C. strip_tags()
  • D. escapeshellcmd()

Answer: B,D


NEW QUESTION # 46
What is the maximum limit of the file size that a user can upload according to the code snippet given below?
<form enctype="multipart/form-data" action="index.php" method="post">
<input type="hidden" name="MAX_FILE_SIZE" value="5000? />
<input name="filedata" type="file" />
<input type="submit" value="Send file" /> </form>

  • A. 5,000 Megabytes
  • B. 5,000 Kilobytes
  • C. 5,000 bits
  • D. 5,000 bytes

Answer: D


NEW QUESTION # 47
What does TCSEC stand for?

  • A. Trusted Computer System Evaluation Center
  • B. Trusted Computer System Experiment Criteria
  • C. Trusted Computer System Evaluation Criteria
  • D. Target Computer System Evaluation Criteria

Answer: C


NEW QUESTION # 48
......

Pass GIAC Information Security GPEN Exam With 405 Questions: https://tesking.pass4cram.com/GPEN-dumps-torrent.html

Related Articles

more
GIAC GPEN Certification Practice Exam

The most valid exam cram is the best study and review material for your upcoming IT exam. With the useful and accurate pass4cram study material, you will pass your exam with a high core.

Latest Valid Exams

Useful Links

Contact Us

Our Working Time: ( GMT 0:00-15:00 )
From Monday to Saturday

Support: Contact now 

If you have any question please leave me your email address, we will reply and send email to you in 12 hours.

Copyright © 2026 Pass4cram NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy