nerdexam
GIAC

GPEN · Question #253

GPEN Question #253: Real Exam Question with Answer & Explanation

The correct answer is A. BackStealth B. HTTPort C. Tunneled. HTTP tunneling tools allow network traffic to be encapsulated within HTTP to bypass firewalls or proxies. BackStealth, HTTPort, and Tunneled are all HTTP tunneling utilities, while Nikto is a web vulnerability scanner.

Question

Which of the following tools allow you to perform HTTP tunneling? Each correct answer represents a complete solution. Choose all that apply.

Options

  • ABackStealth
  • BHTTPort
  • CTunneled
  • DNikto

Explanation

HTTP tunneling tools allow network traffic to be encapsulated within HTTP to bypass firewalls or proxies. BackStealth, HTTPort, and Tunneled are all HTTP tunneling utilities, while Nikto is a web vulnerability scanner.

Common mistakes.

  • D. Nikto is a web server vulnerability scanner used to identify misconfigurations and insecure files, not an HTTP tunneling tool.

Concept tested. HTTP tunneling tools and techniques

Reference. https://owasp.org/www-community/attacks/HTTP_Response_Splitting

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GPEN Practice