GIAC
GCIH · Question #98
GCIH Question #98: Real Exam Question with Answer & Explanation
The correct answer is A: It describes an attempt to transfer DNS zone data.. Among the options, only choice A correctly describes a reconnaissance activity - specifically DNS zone transfer, which attackers use to map a target network.
Reconnaissance, Scanning, and Enumeration
Question
Which of the following statements about reconnaissance is true?
Options
- AIt describes an attempt to transfer DNS zone data.
- BIt is a computer that is used to attract potential intruders or attackers.
- CIt is any program that allows a hacker to connect to a computer without going through the
- DIt is also known as half-open scanning.
Explanation
Among the options, only choice A correctly describes a reconnaissance activity - specifically DNS zone transfer, which attackers use to map a target network.
Common mistakes.
- B. That description defines a honeypot - a decoy system intentionally deployed to lure and monitor attackers - not a statement about reconnaissance.
- C. That description defines a backdoor or remote access trojan, which provides covert unauthorized remote access to a compromised system.
- D. Half-open scanning (SYN scanning) is a specific port scanning method that sends SYN packets without completing the TCP handshake, and is a sub-technique within reconnaissance, not a definition of reconnaissance itself.
Concept tested. DNS zone transfer as a network reconnaissance technique
Topics
#reconnaissance#DNS zone transfer#footprinting#network enumeration
Community Discussion
No community discussion yet for this question.