An attacker attaches a rogue router in a network. He wants to redirect traffic to a LAN attached to his router as part of a man-in-the-middle attack. What measure on behalf of the legitimate admin can mitigate this attack?


A. Make sure that legitimate network routers are configured to run routing protocols with authentication.
B. Disable all routing protocols and only use static routes
C. Only using OSPFv3 will mitigate this risk.
D. Redirection of the traffic cannot happen unless the admin allows it explicitly.

You are performing a penetration test. You achieved access via a buffer overflow exploit and you proceed to find interesting data, such as files with usernames and passwords. You find a hidden folder that has the administrators bank account password and login information for the administrators bitcoin account. What should you do?


A. Do not report it and continue the penetration test.
B. Transfer money from the administrators account to another account.
C. Do not transfer the money but steal the bitcoins.
D. Report immediately to the administrator.

What is the code written for?


A. Buffer Overflow
B. Encryption
C. Denial-of-service (DoS)
D. Bruteforce

Seth is starting a penetration test from inside the network. He hasnt been given any information about the network. What type of test is he conducting?


A. Internal, Blackbox
B. External, Blackbox
C. External, Whitebox
D. Internal, Whitebox

What mechanism in Windows prevents a user from accidentally executing a potentially malicious batch (.bat) or PowerShell (.ps1) script?


A. User Access Control (UAC)
B. Data Execution Prevention (DEP)
C. Address Space Layout Randomization (ASLR)
D. Windows firewall

Which service in a PKI will vouch for the identity of an individual or company?


A. CBC
B. KDC
C. CA
D. CR

Which of the following is a passive wireless packet analyzer that works on Linux-based systems?


A. OpenVAS
B. Burp Suite
C. tshark
D. Kismet

Which Metasploit Framework tool can help penetration tester for evading Anti-virus Systems?


A. msfencode
B. msfpayload
C. msfcli
D. msfd

Port scanning can be used as part of a technical assessment to determine network vulnerabilities. The TCP XMAS scan is used to identify listening ports on the targeted system.
If a scanned port is open, what happens?


A. The port will ignore the packets.
B. The port will send an RST.
C. The port will send an ACK.
D. The port will send a SYN.

Emil uses nmap to scan two hosts using this command:
nmap -sS -T4 -O 192.168.99.1 192.168.99.7
He receives this output:

What is his conclusion?


A. Host 192.168.99.7 is an iPad.
B. He performed a SYN scan and OS scan on hosts 192.168.99.1 and 192.168.99.7
C. Host 192.168.99.1 is the host that he launched the scan from.
D. Host 192.168.99.7 is down.