GCIH Exam Questions
829 real GCIH exam questions with expert-verified answers and explanations. Page 2 of 17.
- Question #52Reconnaissance, Scanning, and Enumeration
Many organizations create network maps of their network system to visualize the network and understand the relationship between the end devices and the transport layer that provide...
network mappingSNMPactive probingroute analytics - Question #53Web Application Attacks & Post-Exploitation
Which of the following functions can you use to mitigate a command injection attack? Each correct answer represents a part of the solution. Choose all that apply.
command injectioninput sanitizationescapeshellargescapeshellcmd - Question #54Web Application Attacks & Post-Exploitation
Which of the following takes control of a session between a server and a client using TELNET, FTP, or any other non-encrypted TCP/IP utility?
session hijackingTELNETFTPunencrypted protocols - Question #55Vulnerability Exploitation & Privilege Escalation
Adam works as a Senior Programmer for Umbrella Inc. A project has been assigned to him to write a short program to gather user input for a Web application. He wants to keep his pro...
format string attackprintf vulnerabilitymemory exploitationC programming flaws - Question #56Vulnerability Exploitation & Privilege Escalation
Adam, a malicious hacker is sniffing the network to inject ARP packets. He injects broadcast frames onto the wire to conduct Man-in-The-Middle attack. Which of the following is the...
ARP poisoningMITM attackbroadcast MAC addressnetwork spoofing - Question #57Vulnerability Exploitation & Privilege Escalation
Mark works as a Network Administrator for Net Perfect Inc. The company has a Windows-based network. The company uses Check Point SmartDefense to provide security to the network. Ma...
HTTP header overflowSmartDefensebuffer overflow mitigationworm defense - Question #58Reconnaissance, Scanning, and Enumeration
Victor works as a professional Ethical Hacker for SecureEnet Inc. He wants to scan the wireless network of the company. He uses a tool that is a free open-source utility for networ...
Nmapnetwork scanningOS fingerprintingwireless reconnaissance - Question #59Incident Response & Cyber Kill Chain
Which of the following attacks are examples of Denial-of-service attacks (DoS)? Each correct answer represents a complete solution. Choose all that apply.
DoS attacksFraggle attackSmurf attackPing flood - Question #60Vulnerability Exploitation & Privilege Escalation
Andrew, a bachelor student of Faulkner University, creates a gmail account. He uses 'Faulkner' as the password for the gmail account. After a few days, he starts receiving a lot of...
password crackingdictionary attackrainbow tablesbrute force - Question #61Reconnaissance, Scanning, and Enumeration
Which of the following are the automated tools that are used to perform penetration testing? Each correct answer represents a complete solution. Choose two.
penetration testing toolsvulnerability scannersNessusGFI LANguard - Question #62Malware Analysis & Advanced Persistent Threats
Firekiller 2000 is an example of a __________.
Trojan typessecurity software disablermalware classification - Question #63Incident Response & Cyber Kill Chain
You are an Incident manager in Orangesect.Inc. You have been tasked to set up a new extension of your enterprise. The networking, to be done in the new extension, requires differen...
incident handling phasespreparation stageincident management - Question #64Vulnerability Exploitation & Privilege Escalation
Which of the following statements about Ping of Death attack is true?
Ping of DeathICMP oversized packetsDoS attacksnetwork attacks - Question #65Malware Analysis & Advanced Persistent Threats
Which of the following can be used as a Trojan vector to infect an information system? Each correct answer represents a complete solution. Choose all that apply.
Trojan delivery vectorsmalware infectionActiveX controlsNetBIOS - Question #66Reconnaissance, Scanning, and Enumeration
Which of the following tools can be used as penetration tools in the Information system auditing process? Each correct answer represents a complete solution. Choose two.
penetration testing toolsSARANessusIS auditing - Question #67Incident Response & Cyber Kill Chain
You discover that your network routers are being flooded with broadcast packets that have the return address of one of the servers on your network. This is resulting in an overwhel...
Smurf attackICMP broadcast amplificationIP spoofingDoS - Question #68Incident Response & Cyber Kill Chain
What is the purpose of configuring a password protected screen saver on a computer?
physical securityscreen saver lockoutunauthorized access prevention - Question #69Malware Analysis & Advanced Persistent Threats
Rick works as a Computer Forensic Investigator for BlueWells Inc. He has been informed that some confidential information is being leaked out by an employee of the company. Rick su...
steganographylinguistic steganographytext semagramsdata exfiltration - Question #70Incident Response & Cyber Kill Chain
Against which of the following does SSH provide protection? Each correct answer represents a complete solution. Choose two.
SSH protectionsIP spoofing mitigationpassword sniffingencrypted protocols - Question #71Incident Response & Cyber Kill Chain
Which of the following US Acts emphasized a "risk-based policy for cost-effective security" and makes mandatory for agency program officials, chief information officers, and inspec...
FISMAsecurity compliance legislationrisk-based policyfederal security - Question #72Malware Analysis & Advanced Persistent Threats
You enter the netstat -an command in the command prompt and you receive intimation that port number 7777 is open on your computer. Which of the following Trojans may be installed o...
Trojan port signaturesTini backdoornetstat enumerationbackdoor detection - Question #73Incident Response & Cyber Kill Chain
You are the Administrator for a corporate network. You are concerned about denial of service attacks. Which of the following measures would be most helpful in defending against a D...
DoS defenseconnection timeout tuningSYN flood mitigationnetwork hardening - Question #74Vulnerability Exploitation & Privilege Escalation
Adam is a novice Web user. He chooses a 22 letters long word from the dictionary as his password. How long will it take to crack the password by an attacker?
dictionary attackpassword crackingweak password selection - Question #75Reconnaissance, Scanning, and Enumeration
Which of the following is a technique for creating Internet maps? Each correct answer represents a complete solution. Choose two.
internet mappingactive probingAS PATH inferencenetwork topology discovery - Question #76Incident Response & Cyber Kill Chain
Which of the following attacks can be overcome by applying cryptography?
cryptography defensespacket sniffingencryption countermeasures - Question #77Reconnaissance, Scanning, and Enumeration
In which of the following attacks does the attacker gather information to perform an access attack?
reconnaissance attackinformation gatheringattack phasesaccess attacks - Question #78Malware Analysis & Advanced Persistent Threats
Which of the following refers to applications or files that are not classified as viruses or Trojan horse programs, but can still negatively affect the performance of the computers...
graywaremalware classificationspywareadware - Question #79Incident Response & Cyber Kill Chain
James works as a Database Administrator for Techsoft Inc. The company has a SQL Server 2005 computer. The computer has a database named Sales. Users complain that the performance o...
DoS identificationnetwork traffic anomalyperformance degradation analysisdatabase attacks - Question #80Web Application Attacks & Post-Exploitation
Which of the following is a version of netcat with integrated transport encryption capabilities?
Cryptcatencrypted netcatcovert channel toolspost-exploitation tunneling - Question #81Incident Response & Cyber Kill Chain
Which of the following systems is used in the United States to coordinate emergency preparedness and incident management among various federal, state, and local agencies?
NIMSincident managementemergency preparednessfederal coordination - Question #82Web Application Attacks & Post-Exploitation
Which of the following can be used to perform session hijacking? Each correct answer represents a complete solution. Choose all that apply.
session hijackingsession fixationsession sidejackingXSS - Question #83Web Application Attacks & Post-Exploitation
Which of the following is a type of computer security vulnerability typically found in Web applications that allow code injection by malicious Web users into the Web pages viewed b...
cross-site scriptingXSScode injectionweb vulnerabilities - Question #84Reconnaissance, Scanning, and Enumeration
You want to perform passive footprinting against we-are-secure Inc. Web server. Which of the following tools will you use?
passive footprintingNetcraftOSINTreconnaissance tools - Question #85Reconnaissance, Scanning, and Enumeration
Which of the following services CANNOT be performed by the nmap utility? Each correct answer represents a complete solution. Choose all that apply.
nmapport scanningOS fingerprintingtool capabilities - Question #86Reconnaissance, Scanning, and Enumeration
In which of the following malicious hacking steps does email tracking come under?
email trackingreconnaissancefootprintinghacking methodology - Question #87Malware Analysis & Advanced Persistent Threats
Which of the following rootkits is able to load the original operating system as a virtual machine, thereby enabling it to intercept all hardware calls made by the original operati...
hypervisor rootkitrootkit typesvirtualizationmalware - Question #88Malware Analysis & Advanced Persistent Threats
John works as a Network Administrator for Net Perfect Inc. The company has a Windows-based network. The company uses Check Point SmartDefense to provide security to the network of...
URL filteringworm preventionHTTP securityCheck Point SmartDefense - Question #89Web Application Attacks & Post-Exploitation
In which of the following methods does an hacker use packet sniffing to read network traffic between two parties to steal the session cookies?
session sidejackingpacket sniffingcookie theftsession hijacking - Question #90Vulnerability Exploitation & Privilege Escalation
You work as a Network Administrator in the SecureTech Inc. The SecureTech Inc. is using Linux- based server. Recently, you have updated the password policy of the company in which...
brute force attackaccount lockoutpassword policyauthentication - Question #91Web Application Attacks & Post-Exploitation
Which of the following are countermeasures to prevent unauthorized database access attacks? Each correct answer represents a complete solution. Choose all that apply.
database securitySQL injection preventioninput sanitizationfirewall rules - Question #92Incident Response & Cyber Kill Chain
In which of the following attacks does an attacker spoof the source address in IP packets that are sent to the victim?
backscatter attackIP spoofingsource address spoofingnetwork attacks - Question #93Incident Response & Cyber Kill Chain
In which of the following steps of the incident handling processes does the Incident Handler make sure that all business processes and functions are back to normal and then also wa...
incident handlingrecovery phasebusiness continuityincident response lifecycle - Question #94Malware Analysis & Advanced Persistent Threats
Which of the following tools is used to attack the Digital Watermarking?
digital watermarking2Mosaicsteganography attackswatermark removal - Question #95Incident Response & Cyber Kill Chain
You are hired as a Database Administrator for Jennifer Shopping Cart Inc. You monitor the server health through the System Monitor and found that there is a sudden increase in the...
denial of servicelogin floodingsystem monitoringattack identification - Question #96Reconnaissance, Scanning, and Enumeration
Which of the following types of attacks is often performed by looking surreptitiously at the keyboard or monitor of an employee's computer?
shoulder surfingphysical securitysocial engineeringinformation theft - Question #97Malware Analysis & Advanced Persistent Threats
Which of the following types of malware does not replicate itself but can spread only when the circumstances are beneficial?
trojan horsemalware typesreplicationmalware classification - Question #98Reconnaissance, Scanning, and Enumeration
Which of the following statements about reconnaissance is true?
reconnaissanceDNS zone transferfootprintingnetwork enumeration - Question #100Web Application Attacks & Post-Exploitation
You work as a Network Penetration tester in the Secure Inc. Your company takes the projects to test the security of various companies. Recently, Secure Inc. has assigned you a proj...
SQL injectionDROP TABLEdatabase attacksweb application security - Question #101Web Application Attacks & Post-Exploitation
Which of the following tools will you use to prevent from session hijacking? Each correct answer represents a complete solution. Choose all that apply.
session hijackingSSL/TLSOpenSSHsecure protocols - Question #102Incident Response & Cyber Kill Chain
You work as a Network Administrator for Marioxnet Inc. You have the responsibility of handling two routers with BGP protocol for the enterprise's network. One of the two routers ge...
DoSBGPpacket floodingnetwork attack