Question 1

In ____, an attacker sends a message that looks genuine, but in reality, the message is broken or fuzzed.&#10;A) spoofing&#10;B) denial-of-service attacks&#10;C) protocol fuzzing&#10;D) eavesdropping

Accepted Answer

Protocol fuzzing is a technique used to discover security vulnerabilities by sending malformed or semi-malformed data into an application, system, or service in an attempt to make it crash, perform unexpected actions, or reveal sensitive information.

Question 2

In a(n) ____ attack, the attacker disturbs the flow of the message packets in order to make it impossible for the user or server to handle the call.&#10;A) spoof&#10;B) session anomalies&#10;C) reconnaissance attack&#10;D) eavesdropping

Accepted Answer

In a session anomalies attack, the attacker disrupts the sequence or flow of message packets during a communication session, making it difficult or impossible for the intended recipient or server to process the communication properly. This type of attack specifically targets the integrity and availability of a communication session.

Question 3

A TCP ____ scan involves sending a TCP SYN-flagged or ACK-flagged packet to a commonly used TCP port on the target host.&#10;A) ping&#10;B) ftp proxy&#10;C) SYN&#10;D) FIN

Accepted Answer

ping&#10;

Question 4

____ is a port scanner that supports several different types of scans, including TCP SYN scanning and UDP scanning, in one utility.&#10;A) UDP&#10;B) Smap&#10;C) SNMP&#10;D) Nmap

Accepted Answer

Nmap is a well-known port scanner that supports various types of scans, including TCP SYN and UDP scanning.

Question 5

____ is a method of connecting to a port on a remote target to determine further information about the associated services running on that specific port.&#10;A) Banner grabbing&#10;B) War driving&#10;C) MAC flooding&#10;D) Social engineering

Accepted Answer

Banner grabbing is a technique used to gather information about specific network services running on ports by capturing the service banners. These banners often contain critical data such as the type of service, version number, and other details useful for identifying potential vulnerabilities.

Question 6

____ is an SIP scanning and fingerprinting tool that analyzes SIP message responses to find out the type of device it is probing.&#10;A) Nmap&#10;B) UDP&#10;C) Smap&#10;D) Sipsak

Accepted Answer

Smap is specifically designed for SIP scanning and fingerprinting, analyzing SIP message responses to identify the type of device being probed.

Question 7

____ is a command-line tool used for OPTIONS scanning, which is useful for stress testing and diagnosing SIP service issues.&#10;A) Netdude&#10;B) Sipsak&#10;C) Oreka&#10;D) VoIPong

Accepted Answer

Sipsak is a command-line tool specifically designed for performing OPTIONS scanning among other SIP-related tests, making it useful for stress testing and diagnosing issues with SIP services.

Question 8

TFTP servers usually use UDP port ____.&#10;A) 10&#10;B) 25&#10;C) 42&#10;D) 69

Accepted Answer

TFTP servers use UDP port 69 for their file transfer operations.

Question 9

In many VoIP devices, SNMP is an insecure protocol listening on port ____.&#10;A) 43&#10;B) 69&#10;C) 162&#10;D) 200

Accepted Answer

SNMP, which stands for Simple Network Management Protocol, commonly uses port 162 for SNMP trap messages. It is often considered insecure if not properly configured or if using versions prior to SNMPv3, which added security features.

Question 10

____ was developed to attempt to determine the password for every user of SIP messages.&#10;A) Netdude&#10;B) AuthTool&#10;C) Oreka&#10;D) VoIPong

Accepted Answer

AuthTool was developed specifically to attempt to determine the password for every user of SIP (Session Initiation Protocol) messages, which is a protocol used in VoIP (Voice over Internet Protocol) communications.

Deck 3: VoIP Penetration Testing