nerdexam
GIAC

GPEN · Question #86

GPEN Question #86: Real Exam Question with Answer & Explanation

The correct answer is D. intitle:Sample.page.for.Apache Apache.Hook.Function. Google dorking uses advanced search operators to fingerprint specific server versions; Apache 2.0's default test page contains references to 'Apache.Hook.Function', which distinguishes it from older Apache 1.3.x default pages.

Question

You want to search the Apache Web server having version 2.0 using google hacking. Which of the following search queries will you use?

Options

  • Aintitle:"Test Page for Apache Installation" "You are free"
  • Bintitle:"Test Page for Apache Installation" "It worked!"
  • Cintitle:test.page "Hey, it worked !" "SSl/TLS aware"
  • Dintitle:Sample.page.for.Apache Apache.Hook.Function

Explanation

Google dorking uses advanced search operators to fingerprint specific server versions; Apache 2.0's default test page contains references to 'Apache.Hook.Function', which distinguishes it from older Apache 1.3.x default pages.

Common mistakes.

  • A. The phrase 'You are free' does not appear on the standard Apache 2.0 default test page and is not a recognized indicator of that version.
  • B. The phrase 'It worked!' is characteristic of the Apache 1.3.x default test page, not Apache 2.0.
  • C. The phrases 'Hey, it worked !' and 'SSl/TLS aware' correspond to Apache 1.3.x SSL-enabled installations, not Apache 2.0.

Concept tested. Google dorking to identify specific Apache server versions

Reference. https://www.exploit-db.com/google-hacking-database

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full GPEN Practice