← Back to exam page

GCIH GIAC Certified Incident Handler

Loading demo links...

Showing 1–3 of 20 questions

Question 1 (Volume B)

In the DNS Zone transfer enumeration, an attacker attempts to retrieve a copy of the entire zone file for a domain from a DNS server. The information provided by the DNS zone can help an attacker gather user names, passwords, and other valuable information. To attempt a zone transfer, an attacker must be connected to a DNS server that is the authoritative server for that zone. Besides this, an attacker can launch a Denial of Service attack against the zone's DNS servers by flooding them with many requests. Which of the following tools can an attacker use to perform a DNS zone transfer?

Each correct answer represents a complete solution. (Choose all that apply.)

Select all that apply, then click Submit answer.

  • Host

  • Dig

  • DSniff

  • NSLookup
Question 2 (Volume A)

Which of the following statements are true about netcat?

Each correct answer represents a complete solution. (Choose all that apply.)

Select all that apply, then click Submit answer.

  • It provides special tunneling, such as UDP to TCP, with the possibility of specifying all network parameters.

  • It can be used as a file transfer solution.

  • It provides outbound and inbound connections for TCP and UDP ports.

  • The nc -z command can be used to redirect stdin/stdout from a program.
Question 3 (Volume B)

Which of the following statements are true about Dsniff?

Each correct answer represents a complete solution. Choose two.

Select all that apply, then click Submit answer.

  • It contains Trojans.

  • It is a virus.

  • It is antivirus.

  • It is a collection of various hacking tools.