Latest GPEN Practice Tests

Premium

GPEN Dumps - Full Mock Test

GIAC Certified Penetration Tester

385 Questions
120 MINUTES
2024-11-07 Updated

Full Access

QUESTION 1

- (Topic 3)
Which of the following statements are true about session hijacking?
Each correct answer represents a complete solution. Choose all that apply.

A. TCP session hijacking is when a hacker takes over a TCP session between two machine
B. It is the exploitation of a valid computer session to gain unauthorized access to information or services in a computer syste
C. Use of a long random number or string as the session key reduces session hijackin
D. It is used to slow the working of victim's network resource

Correct Answer: ABC

QUESTION 2

- (Topic 2)
What will the following scapy commands do?
GPEN dumps exhibit

A. Perform a SYN-ACK scan against TCP ports 80 and 3080 on host 192.168.1.24.
B. Perform a SYN scan against ports 80 through 8080 for all hosts on the192.168.1.0/24 networ
C. Combine the answered and unanswered results of a previous scan into the sr(packet)variabl
D. Perform a SYN-ACK scan against TCP ports 80 and 8080 for all hosts on the192.16S.1.0/24 networ

Correct Answer: D

QUESTION 3

- (Topic 1)
Which type of Cross-Sire Scripting (XSS> vulnerability is hardest for automated testing tools to detect, and for what reason?

A. Stored XS
B. because it may be located anywhere within static or dynamic sitecontent
C. Stored XS
D. because it depends on emails and instant messaging system
E. Reflected XS
F. because It can only be found by analyzing web server response
G. Reflected XSS: because it is difficult to find within large web server log

Correct Answer: A

QUESTION 4

- (Topic 4)
You want that some of your Web pages should not be crawled. Which one of the following options will you use to accomplish the task?

A. Use HTML NO Crawl tag in the Web page not to be crawled
B. Place the name of restricted Web pages in the private.txt file
C. Place the name of restricted Web pages in the robotes.txt file
D. Enable the SSL

Correct Answer: C

QUESTION 5

- (Topic 1)
Which of the following describes the direction of the challenges issued when establishing a wireless (IEEE 802.11) connection?

A. One-way, the client challenges the access point
B. One-way, the access point challenges the client
C. No challenges occur (or wireless connection
D. Two-way, both the client and the access point challenge each other

Correct Answer: D