GSLC Exam Questions

John works as a Network Administrator for We-are-secure Inc. The We-are-secure server is based on Windows Server 2003. One day, while analyzing the network security, he receives an...

You work as a Software Developer for PassGuide Inc. The company has several branches worldwide. The company uses Visual Studio.NET 2005 as its application development platform. You...

The 3-way handshake method is used by the TCP protocol to establish a connection between a client and the server. It involves three steps: 1. In the first step, a SYN message is se...

Which method is used to configure several disk drives into a logical disk drive and provides faulttolerance, redundancy, lower latency, and higher bandwidth for read/write operatio...

Mark works as a Network Administrator for NetTech Inc. The company has a Windows 2003 Active Directory domain-based network. The domain consists of two Windows 2003 member servers...

You work as the Network Administrator for a company that does a large amount of defense contract business. A high level of security, particularly regarding sensitive documents, is...

You are the program manager for your project. You are working with the project managers regarding the procurement processes for their projects. You have ruled out one particular co...

Your company network has been infected with a virus. You have cleaned all PCs, workstations, and servers. However your network still keeps getting re-infected with the same virus....

You are writing the change management plan for your upcoming project. You want to address mistakes that could happen during the execution of the project. Your change management pla...

You are the Network Administrator for a bank. In addition to the usual security issues, you are concerned that your customers could be the victim of phishing attacks that use fake...

A Web developer with your company wants to have wireless access for contractors that come in to work on various projects. The process of getting this approved takes time. So rather...

You work as an Incident handling manager for a company. The public relations process of the company includes an event that responds to the e-mails queries. But since few days, it i...

Andrew works as a Software Developer for Mansoft Inc. The company's network has a Web server that hosts the company's Web site. Andrew wants to enhance the security of the Web site...

You work as an IT Technician for PassGuide Inc. You have to take security measures for the wireless network of the company. You want to prevent other computers from accessing the c...

You are working in a functional organization and are managing the IHH Project. Your project will likely last for six months and has a budget constraint of $1,876,000. You'll be dea...

Which of the following processes is described in the statement below? "This is the process of numerically analyzing the effect of identified risks on overall project objectives."

Victor works as a network administrator for DataSecu Inc. He uses a dual firewall Demilitarized Zone (DMZ) to insulate the rest of the network from the portions that is available t...

You are the project manager of the NJJ project. Your enterprise environmental factors require that you establish certain risk management rules regarding low risks within your proje...

Your project spans the entire organization. You would like to assess the risk of the project but are worried that some of the managers involved in the project could affect the outc...

Holly is the project manager of the GHQ Project for her organization. The project is using the AAA IT Integrators Corporation as a vendor to do a portion of the project work. Mitch...

Which of the following tools can be used to read NetStumbler's collected data files and present street maps showing the logged WAPs as icons, whose color and shape indicates WEP mo...

Which of the following is used to identify a particular 802.11 wireless LAN?

In what type of attack does an attacker capture packets containing passwords or digital signatures whenever packets pass between two hosts on a network?

John is a malicious attacker. He illegally accesses the server of We-are-secure Inc. He then places a backdoor in the We-are-secure server and alters its log files. Which of the fo...

Which of the following functions can you use to mitigate a command injection attack? Each correct answer represents a complete solution. Choose all that apply.

Which of the following DNS servers provides fault tolerance, load distribution, and easier remote name resolution for the primary DNS server?

Which of the following authentication methods is used to enable a Web browser to provide credentials when making a request during an HTTP transaction?

A war dialer is a tool that is used to scan thousands of telephone numbers to detect vulnerable modems. It provides an attacker unauthorized access to a computer. Which of the foll...

This type of virus infects programs that can execute and load into memory to perform predefined steps for infecting systems. It infects files with the extensions .EXE, .COM, .BIN,...

John works as a Network Security Professional. He is assigned a project to test the security of Intrusion Detection System on the We-are-secure server so that he can receive alerts...

You see the career section of a company's Web site and analyze the job profile requirements. You conclude that the company wants professionals who have a sharp knowledge of Windows...

Which of the following types of virus is capable of changing its signature to avoid detection?

Your customer wants the fastest wireless possible in his home. Which of the following would you recommend?

Which of the following tasks can be performed by a malicious bot/botnet? Each correct answer represents a complete solution. Choose all that apply.

You work as a Network Administrator for Net Perfect Inc. The company has a TCP/IP-based network environment. The network contains a Cisco Catalyst router to connect the internal ne...

Your company is covered under a liability insurance policy, which provides various liability coverage for information security risks, including any physical damage of assets, hacki...

A management workstation collects and connects events from multiple IPS sensors in the network. Which protocol is used in this process?

Which of the following encryption modes are possible in WEP? Each correct answer represents a complete solution. Choose all that apply.

Which key of the Asymmetric encryption is used to encrypt the data when a user sends a message or data to another user?

Which of the following statements are true about security risks? Each correct answer represents a complete solution. Choose three.

In which of the following social engineering attacks does an attacker first damage any part of the target's equipment and then advertise himself as an authorized person who can hel...

Which of the following terms describes the statement given below? "It provides the testers with complete knowledge of the infrastructure to be tested, often including network diagr...

Which of the following is used to allow or deny access to network resources?

Which of the following can be used as a countermeasure against the SQL injection attack? Each correct answer represents a complete solution. Choose two.

Which of the following penetration testing phases involves reconnaissance or data gathering?

Which of the following statements are true about an application-level gateway? Each correct answer represents a complete solution. Choose all that apply.

Which of the following attributes is a tool that does not aid the project manager in quality planning?

You are responsible for network security at a defense contractor. You are very concerned about sensitive data not getting out of your network. You have specific concerns about empl...

Which of the following is used to authenticate asymmetric keys?

Maria works as the Chief Security Officer for PassGuide Inc. She wants to send secret messages to the CEO of the company. To secure these messages, she uses a technique of hiding a...