NEW QUESTION 1
The configuration allows a wired or wireless network interface controller to pass all trafice it receives to thecentral processing unit (CPU), rather than passing only the frames that the controller is intended to receive.
Which of the following is being described?

• A. WEM
• B. Multi-cast mode
• C. Promiscuous mode
• D. Port forwarding

Answer: B

NEW QUESTION 2
How does the Address Resolution Protocol (ARP) work?

• A. It sends a reply packet for a specific IP, asking for the MAC address.
• B. It sends a reply packet to all the network elements, asking for the MAC address from a specific IP.
• C. It sends a request packet to all the network elements, asking for the domainname from a specific IP.
• D. It sends a request packet to all the network elements, asking for the MAC address from a specific IP.

Answer: D

NEW QUESTION 3
An attacker has installed a RAT on a host. The attacker wants to ensure that when a user attempts to go to www.MyPersonalBank.com, that the user is directed to a phishing site.
Which file does the attacker needto modify?

• A. Hosts
• B. Networks
• C. Boot.ini
• D. Sudoers

Answer: A

NEW QUESTION 4
Jesse receives an email with an attachment labeled “Court_Notice_21206.zip”. Inside the zip file is a file named “Court_Notice_21206.docx.exe” disguised as a word document.Upon execution, a windows appears stating, “This word document is corrupt.” In the background, the file copies itself to Jesse APPDATAlocal directory and begins to beacon to a C2 server to download additional malicious binaries. What type of malware has Jesse encountered?

• A. Trojan
• B. Worm
• C. Key-Logger
• D. Micro Virus

Answer: A

NEW QUESTION 5
Which of the followingtypes of firewalls ensures that the packets are part of the established session?

• A. Switch-level firewall
• B. Stateful inspection firewall
• C. Application-level firewall
• D. Circuit-level firewall

Answer: B

NEW QUESTION 6
During a security audit of IT processes, an IS auditor found that there was no documented security procedures. What should the IS auditor do?

• A. Terminate the audit.
• B. Identify and evaluate existing practices.
• C. Create a procedures document
• D. Conduct compliance testing

Answer: B

NEW QUESTION 7
During a blackbox pen test you attempt to pass IRC traffic over post 80/TCP from a compromised web enabled host. The traffic gets blocked; however outbound HTTP traffic is unimpeded.
What type of firewall is inspecting outbound traffic?

• A. Circuit
• B. Packet Filtering
• C. Application
• D. Stateful

Answer: C

NEW QUESTION 8
You have successfully comprised a server having an IP address of 10.10.0.5. You would like to enumerate all machines in the same network quickly.
What is the best nmap command you will use?

• A. Nmap –T4 –F 10.10.0.0/24
• B. Nmap –T4 –q 10.10.0.0/24
• C. Nmap –T4 –O 10.10.0.0/24
• D. Nmap –T4 –r 10.10.0.0/24

Answer: A

NEW QUESTION 9
Which of the following statements is TRUE?

• A. Sniffers operation on Layer 3 of the OSI model
• B. Sniffers operation on Layer 2 of the OSI model
• C. Sniffers operation on the Layer 1 of the OSI model
• D. Sniffers operation on both Layer 2 & Layer 3 of the OSImodel

Answer: D

NEW QUESTION 10
You are performing information gathering for an important penetration test. You have found pdf, doc, and images in your objective. You decide to extract metadata from these files and analyze it.
What tool will help you with the task?

• A. Armitage
• B. Dimitry
• C. cdpsnarf
• D. Metagoofil

Answer: D

NEW QUESTION 11
Which of the following tools performs comprehensive tests against web servers, including dangerous files and CGI's?

• A. Snort
• B. Dsniff
• C. Nikto
• D. John the Ripper

Answer: C

NEW QUESTION 12
Which of the following tools is used to detect wireless LANs using the 802.11a/b/g/n WLAN standards on a linux platform?

• A. Kismet
• B. Netstumbler
• C. Abel
• D. Nessus

Answer: A

NEW QUESTION 13
This asymmetry cipther is based on factoring the product of two large prime numbers. What cipher is described above?

• A. SHA
• B. RC5
• C. RSA
• D. MD5

Answer: C

NEW QUESTION 14
The Open Web Application Security Project (OWASP) isthe worldwide not-for-profit charitable organization focused on improving the security of software. What item is the primary concern on OWASP’s Top Ten Project most Critical Web application Security Rules?

• A. Injection
• B. Cross site Scripting
• C. Cross site Request Forgery
• D. Path Disclosure

Answer: A

NEW QUESTION 15
This international organizationregulates billions of transactions daily and provides security guidelines to protect personally identifiable information (PII). These security controls provide a baseline and prevent low-level hackers sometimes known as script kiddies from causing a data breach.
Which of the following organizations is being described?

• A. Payment Card Industry (PCI)
• B. International Security Industry Organization (ISIO)
• C. Institute of Electrical and Electronics Engineers (IEEE)
• D. Center for Disease Control (CDC)

Answer: B

NEW QUESTION 16
Which of the following is a protocol specifically designed for transporting event messages?

• A. SMS
• B. SNMP
• C. SYSLOG
• D. ICMP

Answer: C

NEW QUESTION 17
Which of the following parameters describe LM Hash: I – The maximum password length is 14 characters.
II – There are no distinctions between uppercase and lowercase.
III – It’s a simple algorithm, so 10,000,000 hashes can be generated per second.

• A. I
• B. I and II
• C. II
• D. I, II and III

Answer: D

NEW QUESTION 18
Under the “Post-attach Phase and Activities,” it is the responsibility of the tester to restore the system to a pre-test state.
Which of the following activities should not be included in this phase? I.Removing all files uploaded on the system
II.Cleaning all registry entries III.Mapping of network state
IV.Removing all tools and maintaining backdoor for reporting

• A. III
• B. IV
• C. III and IV
• D. All should be included.

Answer: A

NEW QUESTION 19
It isan entity or event with the potential to adversely impact a system through unauthorized access destruction disclosures denial of service or modification of data.
Which of the following terms best matches this definition?

• A. Threat
• B. Attack
• C. Risk
• D. Vulnerability

Answer: A