← Back to exam page

GPEN GIAC Penetration Tester

Loading demo links...

Showing 13–15 of 15 questions

Question 13 (Volume A)

You successfully compromise a target system's web application using blind command injection. The command you injected is ping-n 1 192.168.1.200. Assuming your machine is 192.168.1 200, which of the following would you see?

Select an option, then click Submit answer.

  • Ping-n 1 192.168.1 200 on the compromised system

  • A 'Destination host unreachable' error message on the compromised system

  • A packet containing 'Packets: Sent - 1 Received = 1, Loss = 0 (0% loss) on yoursniffer

  • An ICMP Echo packet on your sniffer containing the source address of the target
Question 14 (Volume A)

Which of the following describe the benefits to a pass-the-hash attack over traditional password cracking?

Select an option, then click Submit answer.

  • No triggering of IDS signatures from the attack privileges at the level of theacquired password hash and no corruption of the LSASS process.

  • No triggering of IDS signatures from the attack, no account lockout and use ofnative windows file and print sharing tools on the compromised system.

  • No account lockout, privileges at the level of the acquired password hash and useof native windows file and print Sharif tools on the compromised system.

  • No account lockout, use of native file and print sharing tools on the compromisedsystem and no corruption of the LSASS process.
Question 15 (Volume D)

Which of the following is the correct syntax to create a null session?

Select an option, then click Submit answer.

  • c:\>net view \\IP_addr\IPC$ "" /u: ""

  • c:\>net view \\IPC$\IP_addr "" /u: ""

  • c:\>net use \\IP_addr\IPC$ "" /u: ""

  • c:\>net use \\IPC$\IP_addr "" /u: ""