GIAC Systems and Network Auditor (GSNA) Free Practice Test

Question 1

An attacker wants to connect directly to an unsecured station to circumvent the AP security or to attack the station. Which of the following tools can be used to accomplish the task?

A. SirMACsAlot

B. USB adapter

C. Wireless card

D. MacChanger

Correct Answer: B,C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 2

You work as a Network Administrator of a TCP/IP network. You are having DNS resolution problem. Which of the following utilities will you use to diagnose the problem?

A. IPCONFIG

B. PING

C. NSLOOKUP

D. TRACERT

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 3

You work as a Network Administrator for Tech Perfect Inc. The company has a Windows Active Directory-based single domain single forest network. The functional level of the forest is Windows Server 2003. The company has recently provided laptops to its sales team members. You have configured access points in the network to enable a wireless network. The company's security policy states that all users using laptops must use smart cards for authentication. Which of the following authentication techniques will you use to implement the security policy of the company?

A. IEEE 802.1X using EAP-TLS

B. Pre-shared key

C. Open system

D. IEEE 802.1X using PEAP-MS-CHAP

Correct Answer: A

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 4

John works as a Network Auditor for XYZ CORP. The company has a Windows-based network. John wants to conduct risk analysis for the company. Which of the following can be the purpose of this analysis? (Choose three)

A. To try to quantify the possible impact or loss of a threat

B. To ensure absolute safety during the audit

C. To assist the auditor in identifying the risks and threats

D. To analyze exposure to risk in order to support better decision-making and proper management of those risks

Correct Answer: A,C,D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 5

Which of the following is an Internet mapping technique that relies on various BGP collectors that collect information such as routing updates and tables and provide this information publicly?

A. Path MTU discovery (PMTUD)

B. Firewalking

C. AS Route Inference

D. AS PATH Inference

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 6

You work as the Network Administrator for XYZ CORP. The company has a Unix-based network. You want to find out when a particular user was last logged in. To accomplish this, you need to analyze the log configuration files. Which of the following Unix log configuration files can you use to accomplish the task?

A. /var/log/btmp

B. /var/log/messages

C. /var/log/wtmp

D. /var/log/lastlog

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 7

Which of the following is the default port for Hypertext Transfer Protocol (HTTP)?

A. 80

B. 21

C. 20

D. 443

Correct Answer: A

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 8

Which of the following are HTML tags, used to create a table?

A. <SET TABLE>

B. <TABLE SET>

C. <TD>

D. Explanation:
In Hypertext Markup Language (HTML), a table is created using the <TABLE>, <TR>, and <TD> tags. The <TABLE> tag designs the table layout, the <TR> tag is used to create a row, and the <TD> tag is used to create a column. For example, the following code generates a table with two rows and two columns:
<TABLE BORDER=1> <TR> <TD>Cell 1</TD> <TD>Cell 2</TD> </TR> <TR> <TD>Cell 3</TD> <TD>Cell 4</TD> </TR> </TABLE>

E. <TABLE>

F. <TT>

G. <TR>

Correct Answer: C,D,E,G

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 9

Which of the following encryption modes are possible in WEP?

A. 256 bit encryption

B. 40 bit encryption

C. No encryption

D. 128 bit encryption

Correct Answer: B,C,D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 10

You have an online video library. You want to upload a directory of movies. Since this process will take several hours, you want to ensure that the process continues even after the terminal is shut down or session is closed. What will you do to accomplish the task?

A. Add the nohup command at the end of the process.

B. Add the nohup command in front of the process.

C. Use the bg command to run the process at the background.

D. Run the process inside a GNU Screen-style screen multiplexer.

Correct Answer: B,D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 11

Which of the following statements is true about the Digest Authentication scheme?

A. Explanation:
The Digest Authentication scheme is a replacement of the Basic Authentication scheme. This authentication scheme is based on the challenge response model. In Digest authentication, the password is never sent across the network in clear text format but is always transmitted as an MD5 digest of the user's password. In this way, the password cannot be determined with the help of a sniffer. How does it work? In this authentication scheme, an optional header allows the server to specify the algorithm used to create the checksum or digest (by default, the MD5 algorithm). The Digest Authentication scheme provides the challenge using a randomly chosen value. This randomly chosen value is a server-specified data string which may be uniquely generated each time a 401 response is made. A valid response contains a checksum (by default, the MD5 checksum) of the username, the password, the given random value, the HTTP method, and the requested URL. In this way, the password is never sent in clear text format. Drawback: Although the password is not sent in clear text format, an attacker can gain access with the help of the digested password, since the digested password is really all the information needed to access the web site.

B. In this authentication scheme, the username and password are passed with every request, not just when the user first types them.

C. A valid response from the client contains a checksum of the username, the password, the given random value, the HTTP method, and the requested URL.

D. It uses the base64 encoding encryption scheme.

E. The password is sent over the network in clear text format.

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 12

Which of the following is an example of penetration testing?

A. Configuring firewall to block unauthorized traffic

B. Implementing HIDS on a computer

C. Implementing NIDS on a network

D. Simulating an actual attack on a network

Correct Answer: D

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 13

Which of the following types of audit constructs a risk profile for existing and new projects?

A. Innovative comparison audit

B. Technological position audit

C. Technological innovation process audit

D. Client/Server, Telecommunications, Intranets, and Extranets audits

Correct Answer: C

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Question 14

An executive in your company reports odd behavior on her PDA. After investigation you discover that a trusted device is actually copying data off the PDA. The executive tells you that the behavior started shortly after accepting an e-business card from an unknown person. What type of attack is this?

A. PDA Hijacking

B. Bluesnarfing

C. Session Hijacking

D. Privilege Escalation

Correct Answer: B

Explanation: Only visible for TestSimulate members. You can sign-up / login (it's free).

Welcome to TestSimulate

GIAC Systems and Network Auditor (GSNA) Free Practice Test