412-79V10 Exam Questions

Jim performed a vulnerability analysis on his network and found no potential problems. He runs another utility that executes exploits against his system to verify that there are no...

SQL Injection attacks are becoming significantly more popular amongst hackers and there has been an estimated 69 percent increase of this attack type. This attack is usually perfor...

The management of port-scanning that can catch one unaware. If scans are taking too long to complete or obvious ports are missing from the scan, various times of the day are used t...

Information gathering is performed to: i) Collect basic information about the target company and its network ii) Identify operating systems being used, platforms running, web serve...

Michael is the Kimball Construction Company as senior security analyst. As part of yearly security audit, Michael scans his network for vulnerabilities. Using Nmap, Michael conduct...

Transmission Control Protocol (TCP) is a connection-oriented four layer protocol. It is responsible for breaking messages into segments, re-assembling them at the destination stati...

An attacker injects malicious query strings in user input fields to bypass web service authentication mechanisms and to access back-end databases. Which of the following attacks is...

What is the target host IP in the following command? C:> firewalk -F 80 10.10.150.1 172.16.28.95 -p UDP

You work as a penetration tester for Hammond Security Consultants. You are currently working on a contract for the state government of California. Your next step is to initiate a D...

Mason is footprinting an organization to gather competitive intelligence. He visits the company's website for contact information and telephone numbers but does not find any. He kn...

What are the security risks of running a "repair" installation for Windows XP?

What sort of vulnerability assessment approach starts by building an inventory of protocols found on the machine?

Joseph, a penetration tester, was asked to test a web application. During the assessment, he discovered a file upload field where users can upload their profile pictures. Joseph su...

James, a penetration tester, was performing a penetration test for an application, and he was able to gain access to the database. Since James knew an employee named Jason from XYZ...

An organization has deployed a web application that uses encoding technique before transmitting the data over the Internet. This encoding technique helps the organization to hide t...

Jason is working on a pen testing assignment. He is sending customized ICMP packets to a host in the target network. However, the ping requests to the target network are returning...

An organization deployed Microsoft Azure cloud services for running their business activities. They appointed Jamie, a security analyst for performing cloud penetration testing. Ja...

Sandra, a wireless network auditor, discovered her client is using WEP. To prove the point that the WEP encryption is very weak, she wants to decrypt some WEP packets without knowi...

Alison, a Security Manager at Aibox Cyber Security. During a regular network audit, she sent specially crafted ICMP packet fragments with different offset values into the network,...