Free GPEN Exam Dumps

Question 21

- (Topic 1)
You are pen testing a Windows system remotely via a raw netcat shell. You want to get a listing of all the local users in the administrators group, what command would you use?

A. Net account administrators
B. Net user administrators
C. Net localgroup administrators
D. Net localuser administrators

Correct Answer:C

Question 22

- (Topic 2)
John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we-are-secure.com. He enters the following command on the Linux terminal:chmod 741 secure.c
Considering the above scenario, which of the following statements are true?
Each correct answer represents a complete solution. Choose all that apply.

A. John is restricting a guest to only write or execute the secure.c fil
B. John is providing all rights to the owner of the fil
C. By the octal representation of the file access permission, John is restricting the group members to only read the secure.c fil
D. The textual representation of the file access permission of 741 will be -rwxr--rw-.

Correct Answer:BC

Question 23

- (Topic 2)
You want to scan your network quickly to detect live hosts by using ICMP ECHO Requests. What type of scanning will you perform to accomplish the task?

A. Idle scan
B. TCP SYN scan
C. Ping sweep scan
D. XMAS scan

Correct Answer:C

Question 24

- (Topic 3)
In which of the following attacking methods does an attacker distribute incorrect IP address?

A. IP spoofing
B. Mac flooding
C. Man-in-the-middle
D. DNS poisoning

Correct Answer:D

Question 25

- (Topic 1)
What is the main difference between LAN MAN and NTLMv1 challenge/responses?

A. NTLMv1 only pads IS bytes, whereas LANMAN pads to 21 bytes
B. NTLMv1 starts with the NT hash, whereas LANMAN starts with the LANMAN hash
C. NTLMv1utilizes DES, whereas LANMAN utilizes MD4
D. NTLMv1 splits the hash into 3 eight-byte pieces, whereas LAN MAN splits the hash Into 3 seven-byte pieces

Correct Answer:A