Exhibit:

Based on the following extract from the log of a compromised machine, what is the hacker really
trying to steal?

Exhibit:

The following is an entry captured by a network IDS.You are assigned the task of analyzing this
entry. You notice the value 0x90, which is the most common NOOP instruction for the Intel
processor. You figure that the attacker is attempting a buffer overflow attack. You also notice
“/bin/sh” in the ASCII part of the output. As an analyst what would you conclude about the attack?

As a securing consultant, what are some of the things you would recommend to a company to
ensure DNS security? Select the best answers.

Why would you consider sending an email to an address that you know does not exist within the
company you are performing a Penetration Test for?

What tool can crack Windows SMB passwords simply by listening to network traffic?
Select the best answer.

A network admin contacts you. He is concerned that ARP spoofing or poisoning might occur on his
network. What are some things he can do to prevent it?
Select the best answers.

Peter, a Network Administrator, has come to you looking for advice on a tool that would help him
perform SNMP enquires over the network. Which of these tools would do the SNMP enumeration
he is looking for?
Select the best answers.

If a token and 4-digit personal identification number (PIN) are used to access a computer system
and the token performs off-line checking for the correct PIN, what type of attack is possible?

Bob is doing a password assessment for one of his clients. Bob suspects that security policies are
not in place. He also suspects that weak passwords are probably the norm throughout the
company he is evaluating. Bob is familiar with password weaknesses and key loggers.
Which of the following options best represents the means that Bob can adopt to retrieve
passwords from his clients hosts and servers?

Study the snort rule given below:

From the options below, choose the exploit against which this rule applies.