Under the “Post-attack Phase and Activities”, it is the responsibility of the tester to restore the systems to a pretest state.
Which of the following activities should not be included in this phase? (see exhibit)
Exhibit:

You have successfully compromised a machine on the network and found a server that is alive on the same
network. You tried to ping it but you didn’t get any response back.
What is happening?

What is the benefit of performing an unannounced Penetration Testing?

You just set up a security system in your network. In what kind of system would you find the following string of
characters used as a rule within its configuration?
alert tcp any any -> 192.168.100.0/24 21 (msg: “FTP on the network!”;)

You have successfully gained access to a linux server and would like to ensure that the succeeding outgoing
traffic from this server will not be caught by a Network Based Intrusion Detection Systems (NIDS).
What is the best way to evade the NIDS?

Which of the following is the BEST way to defend against network sniffing?

What is the best description of SQL Injection?

You are logged in as a local admin on a Windows 7 system and you need to launch the Computer Management
Console from command line.
Which command would you use?

Which of the following statements is TRUE?

You have compromised a server on a network and successfully opened a shell. You aimed to identify all
operating systems running on the network. However, as you attempt to fingerprint all machines in the networkusing the nmap syntax below, it is not going through.
invictus@victim_server:~$ nmap -T4 -O 10.10.0.0/24
TCP/IP fingerprinting (for OS scan) xxxxxxx xxxxxx xxxxxxxxx.
QUITTING!
What seems to be wrong?