nerdexam
GIAC

GPEN · Question #121

GPEN Question #121: Real Exam Question with Answer & Explanation

The correct answer is A. Perform OS fingerprinting on the We-are-secure network.. In the ethical hacking pre-attack phase, OS fingerprinting follows port and service discovery as the next logical step in building a complete target profile.

Question

John works as a professional Ethical Hacker. He has been assigned the project of testing the preattack phase successfully: Information gathering Determination of network range Identification of active systems Location of open ports and applications Now, which of the following tasks should he perform next?

Options

  • APerform OS fingerprinting on the We-are-secure network.
  • BMap the network of We-are-secure Inc.
  • CFingerprint the services running on the we-are-secure network.
  • DInstall a backdoor to log in remotely on the We-are-secure server.

Explanation

In the ethical hacking pre-attack phase, OS fingerprinting follows port and service discovery as the next logical step in building a complete target profile.

Common mistakes.

  • B. Network mapping corresponds to the 'determination of network range' step, which has already been completed earlier in the described pre-attack sequence.
  • C. Fingerprinting services running on the network is a step that follows OS fingerprinting in the methodology, making it premature at this stage of the assessment.
  • D. Installing a backdoor is an active attack and post-exploitation activity, not part of the pre-attack reconnaissance phase.

Concept tested. Ethical hacking pre-attack phase step ordering

Reference. https://www.eccouncil.org/train-certify/certified-ethical-hacker-ceh/

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GPEN Practice