← Back to exam page

SEC504 Hacker Tools, Techniques, Exploits and Incident Handling

Loading demo links...

Showing 4–6 of 15 questions

Question 4 (Volume C)

US Garments wants all encrypted data communication between corporate office and remote location.

They want to achieve following results:

l Authentication of users

l Anti-replay

l Anti-spoofing

l IP packet encryption

They implemented IPSec using Authentication Headers (AHs). Which results does this solution provide?

Each correct answer represents a complete solution. Choose all that apply.

Select all that apply, then click Submit answer.

  • Anti-replay

  • IP packet encryption

  • Authentication of users

  • Anti-spoofing
Question 5 (Volume C)

Which of the following statements are correct about spoofing and session hijacking?

Each correct answer represents a complete solution. Choose all that apply.

Select all that apply, then click Submit answer.

  • Spoofing is an attack in which an attacker can spoof the IP address or other identity of the target and the valid user cannot be active.

  • Spoofing is an attack in which an attacker can spoof the IP address or other identity of the target but the valid user can be active.

  • Session hijacking is an attack in which an attacker takes over the session, and the valid user's session is disconnected.

  • Session hijacking is an attack in which an attacker takes over the session, and the valid user's session is not disconnected.
Question 6 (Volume B)

Which of the following tools will you use to prevent from session hijacking?

Each correct answer represents a complete solution. Choose all that apply.

Select all that apply, then click Submit answer.

  • OpenSSH

  • Rlogin

  • Telnet

  • SSL