GSLC Exam Questions

John works as an IT Technician for PassGuide Inc. One morning, John receives an e-mail from the company's Manager asking him to provide his logon ID and password, but the company p...

John works as a professional Ethical Hacker. He has been assigned a project to test the security server. The output of the scanning test is as follows: C:\whisker.pl -h target_IP_a...

Which of the following are the limitations for the cross site request forgery (CSRF) attack? Each correct answer represents a complete solution. Choose all that apply.

In which of the following attacking methods does an attacker distribute incorrect IP address?

John works as a professional Ethical Hacker. He has been assigned the project of testing the attacks. As a countermeasure, he suggests that the Network Administrator should remove...

In which of the following does a Web site store information such as user preferences to provide customized services to users?

You work as a professional Ethical Hacker. You are assigned a project to perform blackbox retrieve information about the Webserver being used by we-are-secure. Which of the followi...

John works as a network security officer in Gentech Inc. The company uses a TCP/IP network. While working on the network, a problem occurs related to the DNS resolution. Which of t...

Which of the following tools hides information about IIS Webservers so that they can be prevented from various attacks performed by an attacker?

Which of the following protocols are used to provide secure communication between a client and a server over the Internet? Each correct answer represents a part of the solution. Ch...

Andrew works as a Network Administrator for Infonet Inc. The company's network has a Web server that hosts the company's Web site. Andrew wants to increase the security of the Web...

You work as a Network Administrator in a company. The NIDS is implemented on the network. You want to monitor network traffic. Which of the following modes will you configure on th...

Which of the following records is the first entry in a DNS database file?

Which of the following tools can be used to perform ICMP tunneling? Each correct answer represents a complete solution. Choose two.

John works as a professional Ethical Hacker. He has been assigned the task of testing the that the following protocols of the We-are-secure server are being used in the network: -...

Which of the following protocols is used as a transport protocol for Internet dial-up connections?

Which of the following malware spread through the Internet and caused a large DoS attack in 1988?

Which of the following are symptoms of a virus attack on your computer? Each correct answer represents a complete solution. Choose two.

Which of the following can provide security against man-in-the-middle attack?

You are concerned about attackers simply passing by your office, discovering your wireless network, and getting into your network via the wireless connection. Which of the followin...

Ned is the program manager for his organization and he's considering some new materials for his program. He and his team have never worked with these materials before and he wants...

Which of the following is a computer worm that caused a denial of service on some Internet hosts and dramatically slowed down general Internet traffic?

Which of the following is the practice of a domain name registrant using the five-day "grace period" (the Add Grace Period or AGP) at the beginning of the registration of an ICANN-...

Which of the following authentication methods is used to enable a Web browser to provide credentials when making a request during an HTTP transaction?

Which of the following roles is used to ensure that the confidentiality, integrity, and availability of the services are maintained to the levels approved on the Service Level Agre...

Which of the following is the method of hiding data within another media type such as graphic or document?

Which of the following statements about Digest authentication are true? Each correct answer represents a complete solution. Choose two.

John works as a professional Ethical Hacker. He has been assigned a project to test the security server. Now, he suggests some countermeasures to avoid such brute force attacks on...

You have inserted a Trojan on your friend's computer and you want to put it in the startup so that whenever the computer reboots the Trojan will start to run on the startup. Which...

Which of the following options is an approach to restricting system access to authorized users?

The Project Scope Management knowledge area focuses on which of the following processes? Each correct answer represents a complete solution. Choose all that apply.

The Klez worm is a mass-mailing worm that exploits a vulnerability to open an executable attachment even in Microsoft Outlook's preview pane. The Klez worm gathers email addresses...

You are concerned about rogue wireless access points being connected to your network. What is the best way to detect and prevent these?

Which of the following heights of fence deters only casual trespassers?

Victor wants to use Wireless Zero Configuration (WZC) to establish a wireless network connection using his computer running on Windows XP operating system. Which of the following a...

Which of the following protocols uses a combination of public key and symmetric encryption to provide communication privacy, authentication, and message integrity for secure browsi...

Joseph works as a Network Administrator for WebTech Inc. He has to set up a centralized area on the network so that each employee can share resources and documents with one another...

What is the major difference between a worm and a Trojan horse?

Jacob is worried about sniffing attacks and wants to protect his SMTP transmissions from this attack. What can he do to accomplish this?

Which of the following is the process of comparing cryptographic hash functions of system executables and configuration files?

Which of the following technologies is used to detect unauthorized attempts to access and manipulate computer systems locally or through the Internet or an intranet?

Which of the following terms refers to a prolonged loss of power?

Which of the following is used for high-level or comprehensive analysis, as well as for root cause analysis?

Which of the following is used to provide the service of exchanging data directly between two hosts on the same network?

Which type of DNS zone is a read-only copy of the primary DNS zone?

In which of the following does an attacker use multiple computers throughout the network that has been previously infected?

Which function of incident handling involves in-depth investigation of the incident report or incident activity to establish the priority and threat of the incident?

Which firewall architecture uses two NICs with a screening router inserted between the host and the untrusted network?

Which of the following is a network protocol that allows data to be exchanged using a secure channel between two networked devices?

Which of the following programs collects email addresses of users and creates a mailing list?