Latest GPEN Practice Tests

Premium

GPEN Dumps - Full Mock Test

GIAC Certified Penetration Tester

385 Questions
120 MINUTES
2024-11-14 Updated

Full Access

QUESTION 96

- (Topic 1)
Which of the following is a method of gathering user names from a Linux system?

A. Displaying the owner information of system-specific binaries
B. Reviewing the contents of the system log files
C. Gathering listening services from the xinetd configuration files
D. Extracting text strings from the system password file

Correct Answer: C
Reference:
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/pdf/Security_Guide/Red_Hat_Enterprise_Linux-6-Security_Guide-en-US.pdf

QUESTION 97

- (Topic 2)
You have obtained the hash below from the /etc/shadow file. What are you able to discern simply by looking at this hash?
GPEN dumps exhibit

A. A4XD$B4COCqWaEpFjLLD
B. is a SHAI hash that was created using the salt $1 SuWeOhL6k$ 1
C. A4XD$B4COCqWaEpFjLLD
D. is an MD5 hash that was created using the salt $1 SuWeOhL6k$
E. A4XDsB4COGqWaEpFjLLD
F. is an MD5 hash that was created using the salt uWeOhL6k
G. A4XDsB4COCqWaEpFjLLD
H. is a SHAI hash that was created using the salt uweohL6k

Correct Answer: C

QUESTION 98

- (Topic 2)
Which of the following tasks can be performed by using netcat utility? Each correct answer represents a complete solution. Choose all that apply.

A. Firewall testing
B. Creating a Backdoor
C. Port scanning and service identification
D. Checking file integrity

Correct Answer: ABC

QUESTION 99

- (Topic 1)
What command will correctly reformat the Unix passwordcopy and shadowcopy Tiles for input to John The Ripper?

A. /Un shadow passwd copy shadowcopy > johnfile
B. /Unshadow passwdcopy shadowcopy > johnfile
C. /Unshadow shadowcopy passwdcopy >john file
D. /Unshadow passwdcopy shadowcopy > johnfile

Correct Answer: C
Reference:
https://books.google.co.in/books?id=SC-tAwAAQBAJ&pg=PA286&lpg=PA286&dq=/Unshadow+shadow+copy+passwd+copy+%3Ej ohn+file&source=bl&ots=OnZK9atlc1&sig=co7EM5EHye96vO74W3wZxky3sXU&hl=en&sa =X&ei=FBuoVPLHDc-cugSDxYGYBA&ved=0CCwQ6AEwAg#v=onepage&q=%2FUnshadow%20shadow%20cop y%20passwd%20copy%20%3Ejohn%20file&f=false

QUESTION 100

- (Topic 1)
Why is it important to have a cheat sheet reference of database system tables when performing SQL Injection?

A. This is where sites typically store sensitive information such as credit card number
B. These tables contain a list of allowed database applications
C. The information in these tables will reveal details about the web application's cod
D. These tables contain metadata that can be queried to gain additional helpful informatio

Correct Answer: D
Reference: http://www.rackspace.com/knowledge_center/article/sql-injection-in-mysql