GSEC Exam Questions

When discussing access controls, which of the following terms describes the process of determining the activities or functions that an Individual is permitted to perform?

Which command would allow an administrator to determine if a RPM package was already installed?

A new data center is being built where customer credit information will be processed and stored. Which of the following actions will help maintain the confidentiality of the data?

In order to capture traffic for analysis, Network Intrusion Detection Systems (NIDS) operate with network cards in what mode?

A Host-based Intrusion Prevention System (HIPS) software vendor records how the Firefox Web browser interacts with the operating system and other applications, and identifies all a...

If you do NOT have an original file to compare to, what is a good way to identify steganography in potential carrier files?

You ask your system administrator to verify user compliance with the corporate policies on password strength, namely that all passwords will have at least one numeral, at least one...

Which of the following SIP INVITE lines indicates to the remote registrar the VoIP phone that initiated the call?

Which access control mechanism requires a high amount of maintenance since all data must be classified, and all users granted appropriate clearance?

When are Group Policy Objects (GPOs) NOT applied automatically to workstations?

Against policy, employees have installed Peer-to-Peer applications on their workstations and they are using them over TCP port 80 to download files via the company network from oth...

When considering ingress filtering, why should all inbound packets be dropped if they contain a source address from within the protected network address space? (A) The packets are...

What is the maximum passphrase length in Windows 2000/XP/2003?

The previous system administrator at your company used to rely heavily on email lists, such as vendor lists and Bug Traq to get information about updates and patches. While a usefu...

Which of the following is NOT typically used to mitigate the war dialing threat?

When Net Stumbler is initially launched, it sends wireless frames to which of the following addresses?

Which of the following attack vectors are addressed by Xinetd and TCP Wrappers? (A) Outsider attack from network (B) Outsider attack from a telephone (C) Insider attack from local...

Your system has been infected by malware. Upon investigation, you discover that the malware propagated primarily via email. The malware attacked known vulnerabilities for which pat...

What is the term for a game in which for every win there must be an equivalent loss?

Your CIO has found out that it is possible for an attacker to clone your company's RFID (Radio Frequency ID) based key cards. The CIO has tasked you with finding a way to ensure th...

How often is session information sent to the web server from the browser once the session information has been established?

Where could you go in Windows XP/2003 to configure Automatic Updates?

What is the most secure way to address an unused Windows service so it cannot be exploited by malware?

What is the key difference between Electronic Codebook mode and other block cipher modes like Cipher Block Chaining, Cipher-Feedback and Output-Feedback?

Which of the following TCP packet flags indicates that host should IMMEDIATELY terminate the connection containing the packet?

To be considered a strong algorithm, an encryption algorithm must be which of the following?

In PKI, when someone wants to verify that the certificate is valid, what do they use to decrypt the signature?

What defensive measure could have been taken that would have protected the confidentiality of files that were divulged by systems that were compromised by malware?

The Windows 'tracert' begins by sending what type of packet to the destination host?

You are examining a packet capture session in Wire shark and see the packet shown in the accompanying image. Based on what you see, what is the appropriate protection against this...

What is SSL primarily used to protect you against?

The process of enumerating all hosts on a network defines which of the following activities?

Why are false positives such a problem with IPS technology?

For most organizations, which of the following should be the highest priority when it comes to physical security concerns?

If the NET_ID of the source and destination address in an IP (Internet Protocol) packet match, which answer BEST describes the routing method the sending host will use?

In addition to securing the operating system of production honey pot hosts, what is recommended to prevent the honey pots from assuming the identities of production systems that co...

What is the maximum number of connections a normal Bluetooth device can handle at one time?

What are the two actions the receiver of a PGP email message can perform that allows establishment of trust between sender and receiver?

An employee attempting to use your wireless portal reports receiving the error shown below. Which scenario is occurring?

Where is the source address located in an IPv4 header?

Which of the following are examples of Issue-Specific policies all organizations should address?

Which Host-based IDS (HIDS) method of log monitoring utilizes a list of keywords or phrases that define the events of interest for the analyst, then takes a list of keywords to wat...

What is a security feature available with Windows Vista and Windows 7 that was not present in previous Windows operating systems?

While using Wire shark to investigate complaints of users being unable to login to a web application, you come across an HTTP POST submitted through your web application. The conte...

It is possible to sniff traffic from other hosts on a switched Ethernet network by impersonating which type of network device?

Which of the following is TRUE regarding Ethernet?

Which of the following proxy servers provides administrative controls over the content?

Where are user accounts and passwords stored in a decentralized privilege management environment?

John works as a professional Ethical Hacker. He is assigned a project to test the security of Which of the following statements are true about rootkits? Each correct answer represe...

Which of the following statements about the integrity concept of information security management are true? Each correct answer represents a complete solution. Choose three.