Certified Network Security Practitioner (CNSP) Free Practice Test

Question 1

You are performing a security audit on a company's network infrastructure and have discovered the SNMP community string set to the default value of "public" on several devices. What security risks could this pose, and how might you exploit it?

A. The potential risk is that an attacker could use the SNMP protocol to modify the devices' configuration settings. You might use a tool like Snmpset to change the settings.

B. The potential risk is that an attacker could use the SNMP protocol to gather sensitive information about the devices. You might use a tool like Snmpwalk to query the devices for information.

C. None of the above.

D. Both A and B.

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 2

Which command will perform a DNS zone transfer of the domain "victim.com" from the nameserver at 10.0.0.1?

A. dig @10.0.0.1 victim.com arfxr

B. dig @10.0.0.1 victim.com afxr

C. dig @10.0.0.1 victim.com axrfr

D. dig @10.0.0.1 victim.com axfr

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 3

Which SMB (Server Message Block) network protocol versions are vulnerable to the EternalBlue (MS17-010) Windows exploit?

A. SMBv3 only

B. SMBv1 only

C. SMBv2 only

D. Both SMBv1 and SMBv2

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 4

Which of the following techniques can be used to bypass network segmentation during infrastructure penetration testing?

A. DNS tunneling

B. Covert channels

C. VLAN hopping

D. All of the above

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 5

According to the screenshot below, which of the following statements are correct?

A. The credentials have been submitted over the HTTPS protocol.

B. The credentials have been submitted over the HTTP protocol.

C. The application is running on port 80 and the HTTP protocol.

D. The application is running on port 443 and the HTTPS protocol.

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 6

Which of the following represents a valid Windows Registry key?

A. HKEY_ROOT_CLASSES

B. HKEY_LOCAL_USER

C. HKEY_INTERNAL_CONFIG

D. HKEY_LOCAL_MACHINE

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 7

Which of the following files has the SUID permission set?
-rwxr-sr-x 1 root root 4096 Jan 1 00:00 myfile
-rwsr-xr-x 1 root root 4896 Jan 1 08:00 myprogram
-rw-r--r-s 1 root root 4096 Jan 1 00:00 anotherfile

A. All of the above

B. anotherfile

C. myprogram

D. myfile

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Welcome to TestSimulate

The SecOps Group Certified Network Security Practitioner (CNSP) Free Practice Test