CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
Comptia Pentest+ 2023 Questions and answer - Part 45
1. The Open Web Application Security Project (OWASP) is the worldwide not-for-benefit charitable organization concentrated on improving the security of software. What detail is the essential concern on OWASP-s Top Ten Project Most Critical Web Application Security Risks?
A) Injection
B) Cross Site Request Forgery
C) Cross Site Scripting
D) Path Disclosure
2. How would an attacker record user context that has an access when using CMD?
A) NET CONFIG
B) NET USE
C) NET FILE
D) NET VIEW
3. Select the following resources that NMAP needs to use as a basic vulnerability scanner covering numerous vectors like HTTP, SMB, and FTP.
A) Nessus Scripting Engine
B) NMAP Scripting Engine
C) SAINT Scripting Engine
D) Metasploit Scripting Engine
4. Select the open source tool that would be the best option to scan a network for potential targets.
A) NIKTO
B) NMAP
C) Cain & Abel
D) John the Ripper
5. What would be the proper syntax when you want to do an ICMP scan on a remote computer using hping 2?
A) Hping2-set-ICMP host.domain.com
B) Hping2 host.domain.com
C) Hping2 -1 host.domain.com
D) Hping2 -i host.domain.com
A) Injection
B) Cross Site Request Forgery
C) Cross Site Scripting
D) Path Disclosure
2. How would an attacker record user context that has an access when using CMD?
A) NET CONFIG
B) NET USE
C) NET FILE
D) NET VIEW
3. Select the following resources that NMAP needs to use as a basic vulnerability scanner covering numerous vectors like HTTP, SMB, and FTP.
A) Nessus Scripting Engine
B) NMAP Scripting Engine
C) SAINT Scripting Engine
D) Metasploit Scripting Engine
4. Select the open source tool that would be the best option to scan a network for potential targets.
A) NIKTO
B) NMAP
C) Cain & Abel
D) John the Ripper
5. What would be the proper syntax when you want to do an ICMP scan on a remote computer using hping 2?
A) Hping2-set-ICMP host.domain.com
B) Hping2 host.domain.com
C) Hping2 -1 host.domain.com
D) Hping2 -i host.domain.com
1. Right Answer: A
Explanation: The essential concern of the OWASP 2013 OWASP-s top ten Project Most Critical Web Application Security Risks is the injection. Injection flaws, such as SQL, OS, and LDAP injection occur when untrusted data is sent to an interpreter as part of a command or query. The attacker-s hostile data can trick the interpreter into executing unintended command or accessing data without proper authorization.
2. Right Answer: B
Explanation:
3. Right Answer: B
Explanation: NMAP Scripting engine is the most powerful engine for network discovery, version detection, vulnerability detection and backdoor detection.
4. Right Answer: C
Explanation: NMAP is a free open source network scanner tool launched by Gordon Lyon. It is popularly used to discover hosts and services on a network by sending packets and analyzing the responses. It provides a number of features for probing computer networks, including host discovery and service, and operating system detection.
5. Right Answer: B
Explanation: Hping2 -1 host.domain.com is the proper syntax for; when you want to do ICMP scan on a remote computer using hping 2.
Explanation: The essential concern of the OWASP 2013 OWASP-s top ten Project Most Critical Web Application Security Risks is the injection. Injection flaws, such as SQL, OS, and LDAP injection occur when untrusted data is sent to an interpreter as part of a command or query. The attacker-s hostile data can trick the interpreter into executing unintended command or accessing data without proper authorization.
2. Right Answer: B
Explanation:
3. Right Answer: B
Explanation: NMAP Scripting engine is the most powerful engine for network discovery, version detection, vulnerability detection and backdoor detection.
4. Right Answer: C
Explanation: NMAP is a free open source network scanner tool launched by Gordon Lyon. It is popularly used to discover hosts and services on a network by sending packets and analyzing the responses. It provides a number of features for probing computer networks, including host discovery and service, and operating system detection.
5. Right Answer: B
Explanation: Hping2 -1 host.domain.com is the proper syntax for; when you want to do ICMP scan on a remote computer using hping 2.
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment