What useful information is gathered during a successful Simple Mail Transfer Protocol (SMTP) enumeration?

1. A. The two internal commands VRFY and EXPN provide a confirmation of valid users, email addresses, aliases, and mailing lists.
2. B. Reveals the daily outgoing message limits before mailboxes are locked
3. C. The internal command RCPT provides a list of ports open to message traffic.
4. D. A list of all mail proxy server addresses used by the targeted host

Correct Answer: A

Which iOS jailbreaking technique patches the kernel during the device boot so that it becomes jailbroken after each successive reboot?

1. A. Tethered jailbreaking
2. B. Semi-tethered jailbreaking
3. C. Untethered jailbreaking
4. D. Semi-Untethered jailbreaking

Correct Answer: C
An untethered jailbreak is one that allows a telephone to finish a boot cycle when being pwned with none interruption to jailbreak-oriented practicality.
Untethered jailbreaks area unit the foremost sought-after of all, however they’re additionally the foremost difficult to attain due to the powerful exploits and organic process talent they need. associate unbound jailbreak is sent over a physical USB cable association to a laptop or directly on the device itself by approach of associate application-based exploit, like a web site in campaign.
Upon running associate unbound jailbreak, you’ll be able to flip your pwned telephone off and on once more while not running the jailbreak tool once more. all of your jailbreak tweaks and apps would then continue in operation with none user intervention necessary.
It’s been an extended time since IOS has gotten the unbound jailbreak treatment. the foremost recent example was the computer-based Pangu break, that supported most handsets that ran IOS nine.1. We’ve additionally witnessed associate unbound jailbreak within the kind of JailbreakMe, that allowed users to pwn their handsets directly from the mobile campaign applications programme while not a laptop.

You went to great lengths to install all the necessary technologies to prevent hacking attacks, such as expensive firewalls, antivirus software, anti-spam systems and intrusion detection/prevention tools in your company's network. You have configured the most secure policies and tightened every device on your network. You are confident that hackers will never be able to gain access to your network with complex security system in place.
Your peer, Peter Smith who works at the same department disagrees with you.
He says even the best network security technologies cannot prevent hackers gaining access to the network because of presence of "weakest link" in the security chain.
What is Peter Smith talking about?

1. A. Untrained staff or ignorant computer users who inadvertently become the weakest link in your security chain
2. B. "zero-day" exploits are the weakest link in the security chain since the IDS will not be able to detect these attacks
3. C. "Polymorphic viruses" are the weakest link in the security chain since the Anti-Virus scanners will not be able to detect these attacks
4. D. Continuous Spam e-mails cannot be blocked by your security system since spammers use different techniques to bypass the filters in your gateway

Correct Answer: A

Why is a penetration test considered to be more thorough than vulnerability scan?

1. A. Vulnerability scans only do host discovery and port scanning by default.
2. B. A penetration test actively exploits vulnerabilities in the targeted infrastructure, while a vulnerability scan does not typically involve active exploitation.
3. C. It is not – a penetration test is often performed by an automated tool, while a vulnerability scan requiresactive engagement.
4. D. The tools used by penetration testers tend to have much more comprehensive vulnerability databases.

Correct Answer: B

You have gained physical access to a Windows 2008 R2 server which has an accessible disc drive. When you attempt to boot the server and log in, you are unable to guess the password. In your toolkit, you have an Ubuntu 9.10 Linux LiveCD. Which Linux-based tool can change any user’s password or activate disabled Windows accounts?

1. A. John the Ripper
2. B. SET
3. C. CHNTPW
4. D. Cain & Abel

Correct Answer: C