- (Topic 2)
You work as a Penetration Tester for the Infosec Inc. Your company takes the projects of security auditing. Recently, your company has assigned you a project to test the security of the we-aresecure. com Website. The we-are-secure.com Web server is using Linux operating system. When you port scanned the we-are-secure.com Web server, you got that TCP port 23, 25, and 53 are open. When you tried to telnet to port 23, you got a blank screen in response. When you tried to type the dir, copy, date, del, etc. commands you got only blank spaces or underscores symbols on the screen. What may be the reason of such unwanted situation?

1. A. The we-are-secure.com server is using honeypo
2. B. The we-are-secure.com server is using a TCP wrappe
3. C. The telnet service of we-are-secure.com has corrupte
4. D. The telnet session is being affected by the stateful inspection firewal

Correct Answer: B

- (Topic 2)
You work as a professional Ethical Hacker. You are assigned a project to perform blackhat testing on www.we-are-secure.com. You visit the office of we-are-secure.com as an air-condition mechanic. You claim that someone from the office called you saying that there is some fault in the air-conditioner of the server room. After some inquiries/arguments, the Security Administrator allows you to repair the air-conditioner of the server room.
When you get into the room, you found the server is Linux-based. You press the reboot button of the server after inserting knoppix Live CD in the CD drive of the server. Now, the server promptly boots backup into Knoppix. You mount the root partition of the server after replacing the root password in the /etc/shadow file with a known password hash and salt.
Further, you copy the netcat tool on the server and install its startup files to create a reverse tunnel and move a shell to a remote server whenever the server is restarted. You simply restart the server, pull out the Knoppix Live CD from the server, and inform that the air-conditioner is working properly.
After completing this attack process, you create a security auditing report in which you mention various threats such as social engineering threat, boot from Live CD, etc. and suggest the countermeasures to stop booting from the external media and retrieving sensitive data. Which of the following steps have you suggested to stop booting from the external media and retrieving sensitive data with regard to the above scenario?
Each correct answer represents a complete solution. Choose two.

1. A. Setting only the root level access for sensitive dat
2. B. Encrypting disk partition
3. C. Placing BIOS passwor
4. D. Using password protected hard drive

Correct Answer: BD

- (Topic 3)
Which of the following can be used to mitigate the evil twin phishing attack?

1. A. Magic Lantern
2. B. Obiwan
3. C. IPSec VPN
4. D. SARA

Correct Answer: C

- (Topic 2)
Which of the following United States laws protects stored electronic information?

1. A. Title 18, Section 1029
2. B. Title 18, Section 1362
3. C. Title 18, Section 2701
4. D. Title 18, Section 2510

Correct Answer: D

- (Topic 1)
Which of the following describe the benefits to a pass-the-hash attack over traditional password cracking?

1. A. No triggering of IDS signatures from the attack privileges at the level of theacquired password hash and no corruption of the LSASS proces
2. B. No triggering of IDS signatures from the attack, no account lockout and use ofnative windows file and print sharing tools on the compromised syste
3. C. No account lockout, privileges at the level of the acquired password hash and useof native windows file and print Sharif tools on the compromised syste
4. D. No account lockout, use of native file and print sharing tools on the compromisedsystem and no corruption of the LSASS proces

Correct Answer: D