• Home
  • Blogs
  • Reliable GCIH Dumps Questions Available as Web-Based Practice Test Engine [Q24-Q47]

Reliable GCIH Dumps Questions Available as Web-Based Practice Test Engine [Q24-Q47]

Share

Reliable GCIH Dumps Questions Available as Web-Based Practice Test Engine

Correct and Up-to-date GIAC GCIH BrainDumps


GCIH Certified Professional Salary

  • England: £97983
  • United States: $127,530
  • India:₹ 906020
  • Europe:€114987

 

NEW QUESTION 24
Which of the following password cracking attacks is based on a pre-calculated hash table to retrieve plain text
passwords?

  • A. Dictionary attack
  • B. Rainbow attack
  • C. Brute Force attack
  • D. Hybrid attack

Answer: B

 

NEW QUESTION 25
Which of the following is spy software that records activity on Macintosh systems via snapshots, keystrokes, and Web site logging?

  • A. Spector
  • B. Magic Lantern
  • C. eblaster
  • D. NetBus

Answer: A

Explanation:
Section: Volume A

 

NEW QUESTION 26
John works as a Professional Ethical Hacker for NetPerfect Inc. The company has a Linux-based network. All client computers are running on Red Hat 7.0 Linux. The Sales Manager of the company complains to John that his system contains an unknown package named as tar.gz and his documents are exploited. To resolve the problem, John uses a Port scanner to enquire about the open ports and finds out that the HTTP server service port on 27374 is open. He suspects that the other computers on the network are also facing the same problem. John discovers that a malicious application is using the synscan tool to randomly generate IP addresses.
Which of the following worms has attacked the computer?

  • A. Ramen
  • B. Nimda
  • C. LoveLetter
  • D. Code red

Answer: A

 

NEW QUESTION 27
You want to connect to your friend's computer and run a Trojan on it. Which of the following tools will you use to accomplish the task?

  • A. Remoxec
  • B. GetAdmin.exe
  • C. PSExec
  • D. Hk.exe

Answer: C

Explanation:
Section: Volume C

 

NEW QUESTION 28
Mark works as a Network Administrator for NetTech Inc. The network has 150 Windows 2000 Professional client computers and four Windows 2000 servers. All the client computers are able to connect to the Internet. Mark is concerned about malware infecting the client computers through the Internet. What will Mark do to protect the client computers from malware?
Each correct answer represents a complete solution. Choose two.

  • A. Educate users of the client computers about the problems arising due to malware.
  • B. Assign Read-Only permission to the users for accessing the hard disk drives of the client computers.
  • C. Educate users of the client computers to avoid malware.
  • D. Prevent users of the client computers from executing any programs.

Answer: A,C

 

NEW QUESTION 29
Which of the following is a computer worm that caused a denial of service on some Internet hosts and dramatically slowed down general Internet traffic?

  • A. Beast
  • B. Klez
  • C. SQL Slammer
  • D. Code red

Answer: C

 

NEW QUESTION 30
Adam, a malicious hacker purposely sends fragmented ICMP packets to a remote target. The total size of this ICMP packet once reconstructed is over 65,536 bytes. On the basis of above information, which of the following types of attack is Adam attempting to perform?

  • A. Land attack
  • B. Ping of death attack
  • C. Fraggle attack
  • D. SYN Flood attack

Answer: B

 

NEW QUESTION 31
Which of the following are the limitations for the cross site request forgery (CSRF) attack?
Each correct answer represents a complete solution. Choose all that apply.

  • A. The target site should authenticate in GET and POST parameters, not only cookies.
  • B. The attacker must determine the right values for all the form inputs.
  • C. The target site should have limited lifetime authentication cookies.
  • D. The attacker must target a site that doesn't check the referrer header.

Answer: B,D

 

NEW QUESTION 32
In which of the following attacks does the attacker gather information to perform an access attack?

  • A. Land attack
  • B. DoS attack
  • C. Vulnerability attack
  • D. Reconnaissance attack

Answer: D

 

NEW QUESTION 33
You send SYN packets with the exact TTL of the target system starting at port 1 and going up to port 1024 using hping2 utility. This attack is known as __________.

  • A. Port scanning
  • B. Spoofing
  • C. Firewalking
  • D. Cloaking

Answer: C

 

NEW QUESTION 34
Victor works as a professional Ethical Hacker for SecureEnet Inc. He wants to scan the wireless network of the company. He uses a tool that is a free open-source utility for network exploration. The tool uses raw IP packets to determine the following:
* What ports are open on our network systems.
* What hosts are available on the network.
* Identify unauthorized wireless access points.
* What services (application name and version) those hosts are offering.
* What operating systems (and OS versions) they are running.
* What type of packet filters/firewalls are in use.
Which of the following tools is Victor using?

  • A. Sniffer
  • B. Kismet
  • C. Nmap
  • D. Nessus

Answer: C

Explanation:
Section: Volume B

 

NEW QUESTION 35
Which of the following tools is an automated tool that is used to implement SQL injections and to retrieve data from Web server databases?

  • A. Stick
  • B. ADMutate
  • C. Fragroute
  • D. Absinthe

Answer: D

 

NEW QUESTION 36
Firekiller 2000 is an example of a __________.

  • A. DoS attack Trojan
  • B. Security software disabler Trojan
  • C. Remote access Trojan
  • D. Data sending Trojan

Answer: B

Explanation:
Section: Volume B

 

NEW QUESTION 37
Which of the following attacking methods allows the bypassing of access control lists on servers or routers, either hiding a computer on a network or allowing it to impersonate another computer by changing the Media Access Control address?

  • A. IP address spoofing
  • B. VLAN hoping
  • C. ARP spoofing
  • D. MAC spoofing

Answer: D

Explanation:
Section: Volume C

 

NEW QUESTION 38
TCP/IP stack fingerprinting is the passive collection of configuration attributes from a remote device during standard layer 4 network communications. The combination of parameters may then be used to infer the remote operating system (OS fingerprinting), or incorporated into a device fingerprint.
Which of the following Nmap switches can be used to perform TCP/IP stack fingerprinting?

  • A. nmap -O -p
  • B. nmap -sT
  • C. nmap -sU -p
  • D. nmap -sS

Answer: A

 

NEW QUESTION 39
Alice wants to prove her identity to Bob. Bob requests her password as proof of identity, which Alice dutifully provides
(possibly after some transformation like a hash function); meanwhile, Eve is eavesdropping the conversation and
keeps the password. After the interchange is over, Eve connects to Bob posing as Alice; when asked for a proof of
identity, Eve sends Alice's password read from the last session, which Bob accepts. Which of the following attacks is
being used by Eve?

  • A. Cross site scripting
  • B. Session fixation
  • C. Firewalking
  • D. Replay

Answer: D

 

NEW QUESTION 40
Adam works as a Security Administrator for Umbrella Inc. A project has been assigned to him to test the network security of the company. He created a webpage to discuss the progress of the tests with employees who were interested in following the test. Visitors were allowed to click on a company's icon to mark the progress of the test. Adam successfully embeds a keylogger. He also added some statistics on the webpage. The firewall protects the network well and allows strict Internet access.
How was security compromised and how did the firewall respond?

  • A. The attack was social engineering and the firewall did not detect it.
  • B. Security was not compromised as the webpage was hosted internally.
  • C. The attack was Cross Site Scripting and the firewall blocked it.
  • D. Security was compromised as keylogger is invisible for firewall.

Answer: A

 

NEW QUESTION 41
Jason, a Malicious Hacker, is a student of Baker university. He wants to perform remote hacking on the server of DataSoft Inc. to hone his hacking skills. The company has a Windows-based network. Jason successfully enters the target system remotely by using the advantage of vulnerability. He places a Trojan to maintain future access and then disconnects the remote session. The employees of the company complain to Mark, who works as a Professional Ethical Hacker for DataSoft Inc., that some computers are very slow. Mark diagnoses the network and finds that some irrelevant log files and signs of Trojans are present on the computers. He suspects that a malicious hacker has accessed the network. Mark takes the help from Forensic Investigators and catches Jason.
Which of the following mistakes made by Jason helped the Forensic Investigators catch him?

  • A. Jason did not perform OS fingerprinting.
  • B. Jason did not perform foot printing.
  • C. Jason did not perform covering tracks.
  • D. Jason did not perform a vulnerability assessment.
  • E. Jason did not perform port scanning.

Answer: C

Explanation:
Section: Volume A
Explanation/Reference:

 

NEW QUESTION 42
You are the Administrator for a corporate network. You are concerned about denial of service attacks. Which of the
following measures would be most helpful in defending against a Denial-of-Service (DoS) attack?

  • A. Implement network based antivirus.
  • B. Implement a strong password policy.
  • C. Place a honey pot in the DMZ.
  • D. Shorten the timeout for connection attempts.

Answer: D

 

NEW QUESTION 43
Which of the following are the limitations for the cross site request forgery (CSRF) attack?
Each correct answer represents a complete solution. Choose all that apply.

  • A. The target site should authenticate in GET and POST parameters, not only cookies.
  • B. The attacker must determine the right values for all the form inputs.
  • C. The target site should have limited lifetime authentication cookies.
  • D. The attacker must target a site that doesn't check the referrer header.

Answer: B,D

 

NEW QUESTION 44
You work as a Network Administrator for InformSec Inc. You find that the TCP port number 23476 is open on your server. You suspect that there may be a Trojan named Donald Dick installed on your server. Now you want to verify whether Donald Dick is installed on it or not. For this, you want to know the process running on port 23476, as well as the process id, process name, and the path of the process on your server. Which of the following applications will you most likely use to accomplish the task?

  • A. Fport
  • B. Netstat
  • C. Tripwire
  • D. SubSeven

Answer: A

 

NEW QUESTION 45
Adam, a malicious hacker, wants to perform a reliable scan against a remote target. He is not concerned about being stealth at this point.
Which of the following type of scans would be most accurate and reliable?

  • A. TCP Connect scan
  • B. ACK scan
  • C. UDP sacn
  • D. Fin scan

Answer: A

Explanation:
Section: Volume A

 

NEW QUESTION 46
Which of the following statements are true about firewalking?
Each correct answer represents a complete solution. Choose all that apply.

  • A. To use firewalking, the attacker needs the IP address of the last known gateway before the firewall and the IP address of a host located behind the firewall.
  • B. Firewalking works on the UDP packets.
  • C. A malicious attacker can use firewalking to determine the types of ports/protocols that can bypass the firewall.
  • D. In this technique, an attacker sends a crafted packet with a TTL value that is set to expire one hop past the firewall.

Answer: A,C,D

Explanation:
Section: Volume A

 

NEW QUESTION 47
......

100% Reliable Microsoft GCIH Exam Dumps Test Pdf Exam Material: https://ucertify.examprepaway.com/GIAC/braindumps.GCIH.ete.file.html

Related Blogs

more
GIAC GCIH Certification Practice Exam