CertsTopics Logo

Halloween Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

GPEN Premium Exam Questions

Page: 6 / 14
Total 385 questions
Get GPEN Full Access Download GPEN PDF

GIAC Penetration Tester Questions and Answers

Question 21

Raw netcat shells and telnet terminals share which characteristic?

Options:

A.

Ability to send commands to a target machine.

B.

Ability to adapt output to the size of display window

C.

Shells and terminals are exactly the same.

D.

Ability to process standard output control sequences.

Question 22

In the screen shot below, which selections would you need click in order to intercept and alter all http traffic passing through OWASP ZAP?

Options:

A.

Trap response and continue

B.

Set Break and Continue

C.

Trap request and continue

D.

Continue and drop

Question 23

Which of the following best explains why you would warn to clear browser slate (history. cache, and cookies) between examinations of web servers when you've been trapping and altering values with a non-transparent proxy?

Options:

A.

Values trapped and stored in the browser will reveal the techniques you've used toexamine the web servers.

B.

Trapping and changing response values is beneficial for web site testing but usingthe same cached values in your browser will prevent you from being able to changethose values.

C.

Trapping and changing response values is beneficial for web site testing but willcause browser instability if not cleared.

D.

Values trapped and changed in the proxy, such as a cookie, will be stored by thebrowser and may impact further testing.

Question 24

A client has asked for a vulnerability scan on an internal network that does not have internet access. The rules of engagement prohibits any outside connection for the Nessus scanning machine. The customer has asked you to scan for a new critical vulnerability, which was released after the testing started, winch of the following methods of updating the Nessus plugins does not violate the rules of engagement?

Options:

A.

Connect the scanning machine via wireless bridge and download the updateddirectly

B.

Change the routing and connect through an alternative gateway

C.

Proceed with the test and note the limitation of updating the plugins

D.

Download the updates on an alternative machine and manually load on scanningmachine

Page: 6 / 14
Total 385 questions
Get GPEN Full Access Download GPEN PDF