ML0-320 Exam Questions

Which of the following would best represent the definition of a Penetration Test?

A system administrator deploys a Windows-based server in a publicly-accessible DMZ. The sole purpose of this machine is to run IIS and allow anonymous access. After a few days the...

Why is it important to ensure that SRV records are not publicly accessible? Choose the best Answer:.

Cisco Catalyst Switches have which feature intended to prevent ARP cache poisoning? Choose the best Answer:.

Which of the following capabilities do rootkits have? Choose all that apply.

One key skill a penetration Tester must possess is documentation. There are different documents that will be produced in the course of doing a penetration test, out of the document...

Which of these methods would help protect DNS records from unauthorized users? (Choose two.)

Which registry key setting will disable the automatic playing of executables on a CD-room when the CD-room is inserted into the computer? Choose the best Answer:.

A normal connection is usally established using a TCP Three Way handshake where sequences of packets are sent as follows;Syn, Syn-Ack, Ack.A malicious attacker probing a remote tar...

Which of the following would best describe a scanning technique that is the most reliable but also the most noticeable on the target is being evaluated?

If the DS Client software has been installed on Windows 95, Windows 98, and NT 4 computers, what setting of the LanMan Authentication level should be applied to counteract LanMAn h...

You have just attempted to perform DNS poisoning on the local network DNS server and did not succeed;you decide to launch an attack against routing tables instead. Which of the fol...

Why is it so challenging to block packets from Remote Access Troans that use port 80 for network communications? Choose three.

Which of the following statements would best describe the act of signing a message with a Digital Signature?

Which of the following tools can detect hidden Alternative Data Streams on an NTFS file or folder? Choose all that apply.

In order to idnetify a unique record within a database what would you use?

Why is it important to the security of a network to create a complex password for the SA account on a MSSQL server installation?

Bryce, who is a great security professional with a perfect track record, has just been called into his supervisor's office. His supervisor has the sad task of letting him know that...

Using Netcat what would be the syntax to setup a listening back door from a compromised Windows Server that will spawn a shell when connecting to the remote server on port 777?

Which of the following SQL script will cause the SQL server to cease operations?

What techniques are often used to perform an active-stack fingerprint of an operating system? Choose all that apply.

Johny has been trying to defeat a crypto system for some time. He has in his possession a whole collection of ciphertext documents that were captured from the network. However, he...

What are some of the weaknesses that make LAN Manager Hashes much easier to crack by an attacker? (Select all that apply)

Billybastard.c and pipeupadmin are examples of what type of attack? Choose the best

Most search engine support Advanced Search Operators; as a Penetrtion Tester you must be familiar with some of the larger search engines such as Geogle. There is a wealth of inform...

Detailed logging is the enemy of all cracers. After getting unauthorized access to a computer, a cracker will attempt to disable logging on the remote hosts that he compromises. In...

You have been asked to assist an investigation team in collecting data and evidence related to an internal hacking case. The investigator in charge of the case would like to captur...

Pen testing is another area of security where acronyms and expressions abound. What does the term rooting refers to?

Which of the following password and encryption cracking methods is guaranteed to successfully crack any password or encryption algorithm?

Which of the following countermeasures could be taken to implement security through obscurity and thus limit reconnaissance if an attacker issues this command against a web server?...

Which of the following SQL scripts will discover the usernames and hashed passwords from a MSSQL server?

What is traceroute used for?

When a digital certificate has been revoked before its expiry date, how will the Certification Authority (CA) that issued the certificate inform other CAs that the specific certifi...

What hashed authentication credentials can be sniffed and possibly cracked offline (assuming time is not an issue)? Choose all that apply.

While doing a penetration test you were able to extract a copy of the password database from a Windows server using a vulnerable SQL server that had a blank password. You now have...

Which of the following countermeasures can make it more difficult for an attacker to gain access to the local SAM file if the attacker has physical access to that computer? Choose...

Which of the following scan types would be the least accurate scan considering that may other network conditions could indicate that the port is open even though it might not be op...

Which of the following methods would allow an attacker to get access to the local SAM file if the attacker had physical access? Choose three.