GPPA Online Practice Questions and Answers

You work as a Security Administrator for ABC Inc. You have implemented and configured a web application security scanner in the company's network. It helps in the automated review of the web applications with the defined purpose of discovering security vulnerabilities. In order to perform this task, the web application security scanner examines a number of vulnerabilities.

What are these vulnerabilities?

Each correct answer represents a complete solution. (Choose three.)

A. Input/Output validation

B. Denials of service against the TCP/IP stack

C. Server configuration mistakes/errors/version

D. Specific application problems

An attacker changes the address of a sub-routine in such a manner that it begins to point to the address of the malicious code. As a result, when the function has been exited, the application can be forced to shift to the malicious code. The image given below explains this phenomenon:

Which of the following tools can be used as a countermeasure to such an attack?

A. SmashGuard B. Obiwan

C. Kismet

D. Absinthe

John, a malicious hacker, forces a router to stop forwarding packets by flooding it with many open

connections simultaneously so that all hosts behind it are effectively disabled.

Which of the following attacks is John performing?

A. Replay attack

B. ARP spoofing

C. DoS attack

D. Rainbow attack

Mark has been assigned a project to configure a wireless network for a company. The network should contain a Windows 2003 server and 30 Windows XP client computers. Mark has a single dedicated Internet connection that has to be shared among all the client computers and the server. The configuration needs to be done in a manner that the server should act as a proxy server for the client computers.

Which of the following programs can Mark use to fulfill this requirement?

A. Wingate

B. Microsoft Internet Security and Acceleration Server (ISA)

C. Sniffer

D. SOCKS

Which of the following types of firewalls increases the security of data packets by remembering the state of connection at the network and the session layers as they pass through the filter?

A. Stateless packet filter firewall

B. Virtual firewall

C. PIX firewall

D. Stateful packet filter firewall

Fill in the blank with the appropriate tool name.

______________ is a network protocol analyzer tool that is used to capture packet data from an existing network or examine packet data from a pre-saved file.

A. Compound attack objects

B. TShark

C. Blowfish

D. Wingate

Which of the following modes is also referred to as client mode?

A. Ad-hoc mode

B. Manage mode

C. Monitor mode

D. Master mode

Choose the best explanation for the resulting error when entering the command below.

A. The wildcard mask is not provided for the source and destination addresses.

B. The command is attempting to create a standard access list with extended access list parameters.

C. The ACL commands should be entered from the (config-router) configuration mode.

D. The port number given does not correspond with the proper transport protocol.

Which of the following group management messages is used by routers to handle the IPv6 multicast routing?

A. OSPF

B. ARP

C. ICMPv6

D. IGMP

In which of the following IDS evasion techniques does an attacker deliver data in multiple small sized packets, which makes it very difficult for an IDS to detect the attack signatures of such attacks?

A. Insertion

B. Fragmentation overlap

C. Fragmentation overwrite

D. Session splicing