Analyze the screenshot below, of information gathered during a penetration test.
What is the source of information being displayed.
(image) of robots.txt
An HTTP error from IIS
An Apache httpd.conf file
A robots.txt file from a webserver
A file ACL from IIS version 6 - CORRECT ANSWER-A robots.txt file from a
webserver
(Question 2)
Analyze the screenshot below. What type of vulnerability is being attacked?
(image)
Windows PowerShell
Windows Server service
Internet Explorer
Local Security Authority - CORRECT ANSWER-Windows Server service
(Question 3)
Examine the following Nmap command and results, if the SSH port was changed
to port 23 instead of the default port, why would the output not show the results
of the NSE script.
(image)
-sV is needed to do a Version Scan
-p 23 is needed to designate the port to scan
Port 23 is reserved for Telnet only. - CORRECT ANSWER--sV is needed to do a
Version Scan
,(Explanation )
The Nmap scan in the above command only does a TCP Connect scan and does
not detect what is running on the port. It simply checks whether the port is open
or not. A version scan (-sV) is needed in this case for the Nmap scan to realize
SSH is running on port 23 instead of the default Telnet service. Once the script
sees that SSH is running on Port 23, it can detect which protocol is supported. It
is possible in the configuration of services for system administrators to change
the default ports of services to a different port as long as it is free. By not
specifying a port range the Nmap default port list is used in the scan which
contains port 23. -sC is used to run all N SE scripts in the default category.
(Question 5)
You are penetration testing a client's DMZ servers. You run out of time at the
client site and decide to continue from your home network. You have talked with
your ISP and ensured that all ports are allowed out and they are aware of your
penetration testing activities. You start a remote vulnerability scan that includes
some application layer exploits that do not conform to protocol specifications. For
some reason the vulnerability scanner will not run all the scans on the target
system. The connection appears to be fine as you are able to access the client
site from your system. You test the vulnerability scanner on a system located on
your local test network segment and the scan completes successfully. You
investigate the connection issue and realize that the same vulnerability scan
tests fail every time when connecting out of your network. What is the most likely
reason for the failure?
(Answer)
You - CORRECT ANSWER-An application layer firewall is dropping packets that
do not conform to specifications
Question 6
,During the course of a penetration test, the tester wants to determine the routing
relationship between the target company, ISP, and external networks. Which of
the following methods will provide this information?
Answer
Performing a DNS zone transfer from the company's main resolver and from a
secondary resolver.
Gathering the whois information for the target and the ISP by querying different
servers.
Sniffing session data both to and from the Internet to the company mailserver.
Comparing the results of successive traceroute commands run from multiple
locations - CORRECT ANSWER-Comparing the results of successive traceroute
commands run from multiple locations
Question 7
Why is Cross Site Request Forgery (XSRF) so dangerous?
( Answer )
It launches legitimate requests to authenticate on behalf of a victim system.
It performs legitimate, authenticated requests without the victim's knowledge.
It performs legitimate, unauthenticated requests without the need for a victim
system.
It launches devastating DoS attacks that appear to be legitimate, authenticated
requests. - CORRECT ANSWER-It performs legitimate, authenticated requests
without the victim's knowledge.
( Question 8 )
Analyze the command output below. What conclusion can be drawn?
, user@desktop:~$ sudo nmap -sU 192.168.116.9
Starting Nmap 4.53 ( http://insecure.org ) at 2010-10-01 07:27 EDT
Interesting ports on 192.168.116.9:
Not shown: 1485 closed ports
PORT STATE SERVICE
137/udp open|filtered netbios-ns
138/udp open|filtered netbios-dgm
5353/udp open zeroconf
Nmap done: 1 IP address (1 host up) scanned in 1.556 seconds
( Answer )
The source system did not get a response to the packet sent to 137/udp.
The target system sent a RST for port reported as closed.
The source system did not respond to any probe packet.
The target system responded with an ICMP unreachable for port 138. -
CORRECT ANSWER-Incorrect: The source system did not respond to any probe
packet.
( Correct Answer )
The source system did not get a response to the packet sent to 137/udp.
( Explanation )
During an nmap udp scan, a host may send an ICMP unreachable for closed
UDP ports. If that occurs, then the result will be that nmap reports the port as
closed. If the target does not respond to the probe packet, the port is reported as
open|filtered.
(Question 9)
Voordelen van het kopen van samenvattingen bij Stuvia op een rij:
√ Verzekerd van kwaliteit door reviews
Stuvia-klanten hebben meer dan 700.000 samenvattingen beoordeeld. Zo weet je zeker dat je de beste documenten koopt!
Snel en makkelijk kopen
Je betaalt supersnel en eenmalig met iDeal, Bancontact of creditcard voor de samenvatting. Zonder lidmaatschap.
Focus op de essentie
Samenvattingen worden geschreven voor en door anderen. Daarom zijn de samenvattingen altijd betrouwbaar en actueel. Zo kom je snel tot de kern!
Veelgestelde vragen
Wat krijg ik als ik dit document koop?
Je krijgt een PDF, die direct beschikbaar is na je aankoop. Het gekochte document is altijd, overal en oneindig toegankelijk via je profiel.
Tevredenheidsgarantie: hoe werkt dat?
Onze tevredenheidsgarantie zorgt ervoor dat je altijd een studiedocument vindt dat goed bij je past. Je vult een formulier in en onze klantenservice regelt de rest.
Van wie koop ik deze samenvatting?
Stuvia is een marktplaats, je koop dit document dus niet van ons, maar van verkoper TUTORSON. Stuvia faciliteert de betaling aan de verkoper.
Zit ik meteen vast aan een abonnement?
Nee, je koopt alleen deze samenvatting voor $12.99. Je zit daarna nergens aan vast.
