Question 1

A computer that receives a SYN packet from a remote computer responds to the packet with a(n) ____ packet if its port is open.&#10;A)FIN&#10;B)RST&#10;C)SYN/ACK&#10;D)ACK

Accepted Answer

When a computer receives a SYN packet from a remote computer, it responds with a SYN/ACK packet if its port is open. This is a three-way handshake process, in which the SYN packet is the first step, the SYN/ACK packet is the second step, and the ACK packet is the third and final step. The SYN/ACK packet indicates that the computer is willing to establish a connection with the remote computer.

Question 2

____ was developed to assist security testers in conducting tests on large networks and to consolidate many of the tools needed for large-scale endeavors.&#10;A)Unicornscan&#10;B)NetScanTools&#10;C)Nessus&#10;D)Nmap

Accepted Answer

Unicornscan was developed to assist security testers in conducting tests on large networks and to consolidate many of the tools needed for large-scale endeavors.

Question 3

The ____ relies on the OS of the attacked computer, so it's a little more risky to use than the SYN scan.&#10;A)NULL scan&#10;B)connect scan&#10;C)XMAS scan&#10;D)ACK scan

Accepted Answer

The connect scan is considered the most reliable and stealthy scan because it simulates a normal connection attempt, and if the connection is successful, it immediately terminates it. The NULL, XMAS, and ACK scans rely on specific flags to be set in the packet header, which can be filtered or blocked by firewalls or intrusion detection systems.

Question 4

____ is a protocol packet analyzer.&#10;A)Nmap&#10;B)Fping&#10;C)Tcpdump&#10;D)Nessus

Accepted Answer

Tcpdump is a widely used command-line based packet analyzer for analyzing network traffic based on the TCP/IP protocols. It captures packets that traverse specific network interfaces and displays them in real-time or saves them to a file for later analysis. Nmap is a network exploration tool used to identify hosts and services on a network, Fping is a ping program used to check the reachability of hosts on a network, and Nessus is a vulnerability scanner used to identify vulnerabilities in hosts and networks.

Question 5

____, an open-source fork of Nessus, functions much like a database server, performing complex queries while the client interfaces with the server to simplify reporting and configuration.&#10;A)Unicornscan&#10;B)NetScanTools&#10;C)OpenVAS&#10;D)Nmap

Accepted Answer

OpenVAS is an open-source fork of Nessus and functions like a database server, allowing for complex queries while simplifying reporting and configuration for the client interface. Unicornscan is a network enumeration tool, NetScanTools is a suite of network utilities, and Nmap is a network exploration and security auditing tool, but none of them function like a database server in the same way that OpenVAS does.

Question 6

____ is a reasonably priced commercial port scanner with a GUI interface.&#10;A)AW Security Port Scanner&#10;B)Common Vulnerabilities and Exposures&#10;C)Ethereal&#10;D)Tcpdump

Accepted Answer

AW Security Port Scanner is a reasonably priced commercial port scanner with a GUI interface. Common Vulnerabilities and Exposures is not a port scanner, Ethereal is a packet analyzer, and Tcpdump is a command-line network monitoring tool.

Question 7

A closed port can be vulnerable to an attack.

Accepted Answer

The answer of A closed port can be vulnerable to...

Question 8

A disadvantage of Nmap is that it is very slow because it scans all the 65,000 ports of each computer in the IP address range.

Accepted Answer

Nmap has the ability to be customized to scan only specific ports or a range of ports, which can significantly reduce scan time. Additionally, the use of various scan techniques (such as SYN scans) can further increase efficiency. Therefore, Nmap is not necessarily slow by default.

Question 9

Unicornscan optimizes ____ scanning beyond the capabilities of any other port scanner.&#10;A)TCP&#10;B)UDP&#10;C)ICMP&#10;D)IP

Accepted Answer

Unicornscan is specially designed to optimize UDP scanning, making it faster and more efficient than other port scanners. While it can also scan TCP and ICMP, it excels at UDP scanning.

Question 10

The ____ tool was originally written for Phrack magazine in 1997 by Fyodor.&#10;A)Unicornscan&#10;B)Fping&#10;C)Nessus&#10;D)Nmap

Accepted Answer

The tool originally written for Phrack magazine in 1997 by Fyodor is Nmap.

Question 11

Port scanning is a method of finding out which services a host computer offers.

Accepted Answer

The answer of Port scanning is a method of finding...

Question 12

When a TCP three-way handshake ends, both parties send a(n) ____ packet to end the connection.&#10;A)SYN&#10;B)ACK&#10;C)FIN&#10;D)RST

Accepted Answer

The answer of When a TCP three-way handshake ends, both...

Question 13

Closed ports respond to a(n) ____ with an RST packet.&#10;A)XMAS scan&#10;B)SYN scan&#10;C)Connect scan&#10;D)ACK scan

Accepted Answer

The answer of Closed ports respond to a(n) ____ with...

Question 14

You can search for known vulnerabilities in a host computer by using the Common Vulnerabilities and Exposures Web site.

Accepted Answer

The answer of You can search for known vulnerabilities in...

Question 15

____ is currently the standard port-scanning tool for security professionals.&#10;A)Unicornscan&#10;B)Fping&#10;C)Nessus&#10;D)Nmap

Accepted Answer

The answer of ____ is currently the standard port-scanning tool...

Question 16

HTTP uses port ____ to connect to a Web service.&#10;A)21&#10;B)22&#10;C)25&#10;D)80

Accepted Answer

The answer of HTTP uses port ____ to connect to...

Question 17

The ____ option of Nmap is used to perform a TCP SYN stealth port scan.&#10;A)-sS&#10;B)-sU&#10;C)-sV&#10;D)-S

Accepted Answer

The answer of The ____ option of Nmap is used...

Question 18

With the ____ tool, you can ping multiple IP addresses simultaneously.&#10;A)Fping&#10;B)Nmap&#10;C)Nessus&#10;D)Unicornscan

Accepted Answer

The answer of With the ____ tool, you can ping...

Question 19

A closed port responds to a SYN scan with an RST packet, so if no packet is received, the best guess is that the port is open.

Accepted Answer

The answer of A closed port responds to a SYN...

Question 20

In an ACK scan, if the attacked port returns an RST packet the attacked port is considered to be &#34;____&#34;.&#10;A)open&#10;B)closed&#10;C)unfiltered&#10;D)unassigned

Accepted Answer

The answer of In an ACK scan, if the attacked...

Question 21

An OpenVAS____________________ is a security test program (script) that can be selected from the client interface.

Accepted Answer

The answer of An OpenVAS____________________ is a security test program...

Question 22

To verify if all the IP addresses of a network are being used by computers that are up and running, you can use a port scanner to ____________________ the range of IP addresses.

Accepted Answer

The answer of To verify if all the IP addresses...

Question 23

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;might indicate that a firewall is being used

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 24

Many security testers use the ____ tool to bypass filtering devices by injecting modified IP packets.&#10;A)Tcpdump&#10;B)Hping&#10;C)Nmap&#10;D)Nessus

Accepted Answer

The answer of Many security testers use the ____ tool...

Question 25

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;typically used to get past a firewall

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 26

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;in this type of scan, the FIN, PSH, and URG flags are set

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 27

The ____ tool enables you to craft an IP packet to your liking.&#10;A)Unicornscan&#10;B)Hping&#10;C)Nmap&#10;D)Ethereal

Accepted Answer

The answer of The ____ tool enables you to craft...

Question 28

Some attackers want to be hidden from network devices or IDSs that recognize an inordinate amount of pings or packets being sent to their networks, so they use ____________________ attacks that are more difficult to detect.

Accepted Answer

The answer of Some attackers want to be hidden from...

Question 29

A ____ or batch file is a text file containing multiple commands that are normally entered manually at the command prompt.&#10;A)script&#10;B)program&#10;C)snippet&#10;D)signature

Accepted Answer

The answer of A ____ or batch file is a...

Question 30

In any *NIX system, after saving a script, you need to make it executable so that you can run it. From the command line, type ____.&#10;A)chmod +execute script_name&#10;B)chmod +x script_name&#10;C)chmod -execute script_name&#10;D)chmod -x script_name

Accepted Answer

The answer of In any *NIX system, after saving a...

Question 31

Nmap has a GUI version called ____________________ that makes it easier to work with some of the more complex options.

Accepted Answer

The answer of Nmap has a GUI version called ____________________...

Question 32

Port scanners can also be used to conduct a(n) ____________________ of a large network to identify which IP addresses belong to active hosts.

Accepted Answer

The answer of Port scanners can also be used to...

Question 33

What makes the ____________________ tool unique is the ability to update security check plug-ins when they become available.

Accepted Answer

The answer of What makes the ____________________ tool unique is...

Question 34

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;similar to the SYN scan, except that it does complete the three-way handshake

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 35

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;allows access to applications

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 36

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;operates on ports 65301, 22, 5631, and 5632

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 37

The ____ vi command deletes the current line.&#10;A)d&#10;B)dl&#10;C)dd&#10;D)dw

Accepted Answer

The answer of The ____ vi command deletes the current...

Question 38

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;TCP scan with all the packet flags are turned off

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 39

In a Linux script, the line ____ is important because it identifies the file as a script.&#10;A)#!/bin/sh&#10;B)#!/bin/script&#10;C)#!/bin/shscript&#10;D)#!/bin/sc

Accepted Answer

The answer of In a Linux script, the line ____...

Question 40

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;does not allow entry or access to a service

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 41

Why is port scanning useful for hackers?

Accepted Answer

The answer of Why is port scanning useful for hackers?...

Question 42

MATCHING&#10;Match each term with the correct statement below.&#10;a.Nmap&#10;f.ACK scan&#10;b.pcAnywhere&#10;g.filtered port&#10;c.XMAS scan&#10;h.open port&#10;d.connect scan&#10;i.NULL scan&#10;e.closed port&#10;a port scanning tool

Accepted Answer

The answer of MATCHING&#10;Match each term with the correct statement...

Question 43

What are the problems on depending on ping sweeps to find out which hosts are &#34;live&#34;?

Accepted Answer

The answer of What are the problems on depending on...

Question 44

If subnetting is used in an organization, you can include the broadcast address by mistake when performing ping sweeps. How might this happen?

Accepted Answer

The answer of If subnetting is used in an organization,...

Question 45

What is a UDP scan?

Accepted Answer

The answer of What is a UDP scan?...

Question 46

What makes the OpenVAS tool unique?

Accepted Answer

The answer of What makes the OpenVAS tool unique?...

Question 47

Why is it important for you as a security tester to understand and be able to create scripts?

Accepted Answer

The answer of Why is it important for you as...

Question 48

How does a SYN scan work?

Accepted Answer

The answer of How does a SYN scan work?...

Question 49

Why is port scanning considered legal by most security testers and hackers?

Accepted Answer

The answer of Why is port scanning considered legal by...

Question 50

Which ports should security professionals scan when doing a test? Why?

Accepted Answer

The answer of Which ports should security professionals scan when...

Deck 5: Port Scanning