412-79V10 Exam Questions

A junior penetration tester for XYZ Ltd. While joining, as a part of her training, she was instructed to about various legal policies and information securities acts by her trainer...

Adam is an IT administrator for Syncari Ltd. He is designated to perform various IT tasks like setting up new user accounts, managing backup/restores, security monitoring, and impl...

You are a licensed Penetration Tester, wants to create an exact replica of an original website, so he can browse and spend more time analyzing it. Which of the following tools will...

A hacker initiates so many invalid requests to a cloud network host that the host uses all its resources responding to invalid requests and ignores the legitimate requests. Identif...

Thomas is an attacker and he skimmed through the HTML source code of an online shopping website for the presence of any vulnerabilities that he can exploit to gain access to the da...

Steven is performing a wireless network audit. As part of the engagement, he is trying to crack a WPA-PSK key. Steven has captured enough packets to run aircrack-ng, but when he tr...

Sam was asked to conduct penetration tests on one of the client's internal networks. As part of the testing process, Sam performed enumeration to gain information about all resourc...

Jason is working on a pen-testing assignment. He is sending customized ICMP packets to a host in the target network. However, the ping requests to the target hosts are all returned...

Joseph, a penetration tester, was hired by Xsecurity Services. Joseph was asked to perform a pen test on a client's network. He was not provided with any information about the clie...

An organization deployed Microsoft Azure cloud services for running their business activities. They appointed Jamie, a security analyst for performing cloud penetration testing. Ja...

Sandra, a wireless network auditor, discovered her client is using WEP. To prove the point that the WEP encryption is very weak, she wants to decrypt some WEP packets with aircrack...

Richard, a penetration tester was asked to assess a web application. During the assessment, he discovered a file upload field where users can upload their profile pictures. Richard...

Richard is working on a web app pen testing assignment for one of his clients. After preliminary information, gathering and vulnerability scanning Richard runs the SQLMAP tool to e...

Identify the PRGA from the following screenshot:

An organization has deployed a web application that uses encoding technique before transmitting the data over the internet. This encoding technique helps the organization to transf...

During an internal network audit, you are asked to see if there is any RPC server running on the network and if found, enumerate the associate RPC services. Which port would you sc...

The penetration testing team of MrTech Inc. identified the presence of various vulnerabilities in the web application coding. They prepared a detailed report and shared it with the...

Alice is a Security Manager at Acbox Cyber Security. During a regular network audit, she sent specially crafted ICMP packet fragments with different offset values into the network,...

Which of the following roles of Microsoft Windows Active Directory refers to the ability of an active directory to transfer roles to any domain controller (DC) in the enterprise?

A user unknowingly installed a fake malicious banking app in his Android mobile. This app includes a configuration file that consists of phone numbers of the bank, customer care, d...

How does fingerprinting help you as a pen tester?

As a penetration tester, you found nfs, rpc and mountd services running on it. During the investigation, you were told that NFS Shares were mentioned in the /etc/exports list of th...

Michael's corporation hired Michael, a penetration tester. Management asked Michael to perform cloud penetration testing on the company's cloud infrastructure. As a part of his tas...

A team of cyber criminals in Germany has sent malware-based emails to workers of a fast-food center which is having multiple outlets spread geographically. When the worker opened t...

During the pen testing process, James performs a FIN scan as given below: Scan directed at open port: Client Server 192.5.2.92:4079----FIN---->192.5.2.110:23 192.5.2.92:4079<------...

Peter is a lead penetration tester in a security service firm named Xsecurity. Recently, Peter was assigned a white-box pen test assignment testing the security of an IDS system de...

Robert, a network admin in XYZ Inc. He deployed a Linux server in his enterprise network and wanted to share some critical and sensitive files that are present in the Linux server...

Verity Motors Pvt. Ltd. has recently deployed RFID technology in the vehicles which allows the car owner to unlock the car with the exchange of a valid RFID signal between the car...

You have just completed a database security audit and writing the draft pen testing report. Which of the following will you include in the recommendation section to improve the sec...

Peter, a freelance Security Auditor and Penetration Tester, was working on a pen testing assignment for Xsecurity. George is an ESCA certified professional and was following the LP...

Bob was assigned to attack network switches of an organization to steal confidential information such as network subscriber information, passwords, etc. He started transmitting dat...

The Rhythm Networks Pvt Ltd firm is a group of ethical hackers. Rhythm Networks was asked by their client Zombie to identify how the attacker penetrated their firewall. Rhythm disc...

Todd is working on an assignment involving auditing of a web service. The scanning phase reveals the web service is using an Oracle database server at the backend. He wants to know...

Cedric, an IT software support executive working for Panacea Tech. Inc., was asked to install Ubuntu operating system in the computers present in the organization. After installing...

Jack, a network engineer, is working on an IPv6 implementation for one of his clients. He deployed IPv6 on IPv4 networks using a mechanism where a node can choose from IPv6 or IPv4...

Arnold is trying to gain access to a database by inserting exploited query statements with a WHERE clause. He wants to retrieve all the entries from a particular table (i.e. StudNa...

Edward is a penetration tester hired by the OBC Group. He was asked to gather information on the client's network. As part of the work assigned, Edward needs to find out about the...

As a part of information gathering, you are given a website URL and asked to identify the operating system using passive OS fingerprinting. When you begin to use various network sn...

Which of the following service displays information such as currently logged-on users, email address, full name, etc. Which among the following ports would you scan to identify thi...

Mark has successfully cracked the WPA-PSK password during his wireless pen testing assignment. However, he is unable to connect to the access point using this password. What is mos...

Peter, a penetration tester at a top MNC company, is trying to breach the company's database as a part of SQLI penetration testing. She began to use the SQLI techniques to test the...

Christen is a renowned SQL penetration testing specialist in the US. A multinational ecommerce company hired him to check for vulnerabilities in the SQL database. Christen decided...

Fred, who owns a company called Skyfelt Ltd., wants to test the enterprise network for presence of any vulnerabilities and loopholes. He employed a third-party penetration testing...

John is performing a wireless pen testing for an organization. Using different wireless attack techniques, he successfully cracked the WPA-PSK key. He is trying to connect to the w...

Moses, a renowned ethical hacker, attempts to overwhelm the target victim computer by transmitting TCP connection requests faster than the computer can process them. He started sen...

What is the purpose of the Traceroute command?

Which port does DHCP use for client connections?

Rebecca, a security analyst, was auditing the network in her organization. During the scan, she found a service running on a remote host, which helped her to enumerate information...

In delivering penetration testing report, which of the following steps should NOT be followed?

AB Cloud Services provide virtual platform services for the users in addition to storage. The company offers users with APIs, core connectivity and delivery, automation and middlew...