GIAC New 2023 GSEC Test Tutorial (Updated 385 Questions) [Q20-Q42]

GIAC New 2023 GSEC Test Tutorial (Updated 385 Questions)

GSEC Exam Questions Dumps, Selling GIAC Products

NEW QUESTION # 20
Which of the following is an UDP based protocol?

• A. IMAP
• B. SNMP
• C. telnet
• D. LDAP

Answer: B

NEW QUESTION # 21
If a Linux administrator wanted to quickly filter out extraneous data and find a running process named RootKit, which command could he use?

• A. tail/var/log/messages> Rootkit
• B. top-u Rootkit
• C. sed's/Rootkit/g'/var/log/messages
• D. ps-ef/ grep Rootkit
• E. cat/proc;grep Rootkit

Answer: D

NEW QUESTION # 22
Why would someone use port 80 for deployment of unauthorized services?

• A. This is a technique commonly used to perform a denial of service on the local web server.
• B. If someone were to randomly browse to the rogue port 80 service they could be compromised.
• C. Google will detect the service listing on port 80 and post a link, so that people all over the world will surf to the rogue service.
• D. HTTP traffic is usually allowed outbound to port 80 through the firewall in most environments.

Answer: D

NEW QUESTION # 23
You have installed a burglar alarm in the company's store room. Which type of security control is implemented in the store room by doing so?

• A. Deterrent
• B. Corrective
• C. Directive
• D. Detective

Answer: D

NEW QUESTION # 24
Your customer wants wireless internet in his home. He must have speeds of at least 100 mbps. Which wireless option would you recommend?

• A. 802.11b
• B. 802.11n
• C. 802.11a
• D. 802.11g

Answer: B

NEW QUESTION # 25
You work as a Network Administrator for Perfect World Inc. You are configuring a network that will include 1000BaseT network interface cards in servers and client computers. What is the maximum segment length that a 1000BaseT network supports?

• A. 100 meters
• B. 1000 meters
• C. 480 meters
• D. 10 meters

Answer: A

NEW QUESTION # 26
Which of the following uses a tunneling protocol?

• A. LAN
• B. Internet
• C. Firewall
• D. VPN

Answer: D

NEW QUESTION # 27
Which of the following elements is the most important requirement to ensuring the success of a business continuity plan?

• A. Executive buy-in
• B. Clearly defining roles and responsibilities
• C. Disaster Recover Plans
• D. Training
• E. Anticipating all relevant threats

Answer: A

NEW QUESTION # 28
Which of the following statements would be seen in a Disaster Recovery Plan?

• A. "Instructions for notification of the media can be found in Appendix A"
• B. "After arriving at the alternate site, utilize the server build checklist to rebuild all servers on the server rebuild list."
• C. "The Emergency Response Plan should be executed in the case of any physical disaster listed on page
  3."
• D. "The target for restoration of business operations is 72 hours from the declaration of disaster."

Answer: B

NEW QUESTION # 29
Which of the following applications would be BEST implemented with UDP instead of TCP?

• A. A multicast streaming application.
• B. A file transfer application.
• C. A DNS zone transfer.
• D. A web browser.

Answer: A

NEW QUESTION # 30
Two clients connecting from the same public IP address (for example - behind the same NAT firewall) can connect simultaneously to the same web server on the Internet, provided what condition is TRUE?

• A. The server is not using a well-known port.
• B. The client-side source ports are different.
• C. The clients are on different subnets.
• D. The server is on a different network.

Answer: B

NEW QUESTION # 31
John works as a Network Administrator for Perfect Solutions Inc. The company has a Linux-based network.
John is working as a root user on the Linux operating system. He is currently working on his C based new traceroute program. Since, many processes are running together on the system, he wants to give the highest priority to the cc command process so that he can test his program, remove bugs, and submit it to the office in time. Which of the following commands will John use to give the highest priority to the cc command process?

• A. nice -n -20 cc -c *.c &
• B. nice -n 19 cc -c *.c &
• C. nice cc -c *.c
• D. nice cc -c *.c &

Answer: A

NEW QUESTION # 32
Which of the following languages enable programmers to store cookies on client computers? Each correct answer represents a complete solution. Choose two.

• A. JavaScript
• B. HTML
• C. Perl
• D. DHTML

Answer: A,C

NEW QUESTION # 33
Which of the following is the default port for Simple Network Management Protocol (SNMP)?

• A. UDP port 161
• B. TCP port 25
• C. TCP port 110
• D. TCP port 80

Answer: A

NEW QUESTION # 34
What is TRUE about Workgroups and Domain Controllers?

• A. You cannot have stand-alone computers in the midst of other machines that are members of a domain
• B. Workgroups are characterized by higher costs while Domain Controllers by lower costs
• C. By default all computers running Windows 2008 can only form Domain Controllers not Workgroups
• D. You can have stand-alone computers in the midst of other machines that are members of a domain.
• E. Workgroup computers cannot share resources, only computers running on the same domain can

Answer: D

NEW QUESTION # 35
You are an Intrusion Detection Analyst and the system has alerted you to an Event of Interest (EOI) that appears to be activity generated by a worm. You investigate and find that the network traffic was normal. How would this type of alert be categorized?

• A. True Negative
• B. False Negative
• C. True Positive
• D. False Positive

Answer: D

NEW QUESTION # 36
Which Defense-in-Depth principle starts with an awareness of the value of each section of information within an organization?

• A. Perimeter layering
• B. Information centric defense
• C. General information protection
• D. Uniform information protection

Answer: B

NEW QUESTION # 37
What type of malware is a self-contained program that has the ability to copy itself without parasitically infecting other host code?

• A. Worms
• B. Boot infectors
• C. Trojans
• D. Viruses

Answer: A

NEW QUESTION # 38
While using Wire shark to investigate complaints of users being unable to login to a web application, you come across an HTTP POST submitted through your web application. The contents of the POST are listed below. Based on what you see below, which of the following would you recommend to prevent future damage to your database?

• A. Use https to prevent hackers from inserting malware
• B. Use ssh to prevent a denial of service attack
• C. Sanitize user inputs to prevent injection attacks
• D. Authenticate users to prevent hackers from using your database

Answer: A

NEW QUESTION # 39
What is the command-line tool for Windows XP and later that allows administrators the ability to get or set configuration data for a very wide variety of computer and user account settings?

• A. IPCONFIG.EXE
• B. NETSTAT.EXE
• C. WMIC.EXE
• D. C0NF1G.EXE

Answer: C

NEW QUESTION # 40
When trace route fails to get a timely response for a packet after three tries, which action will it take?

• A. It will increase the timeout for the hop and resend the packets.
• B. It will print '* * *' for the attempts, increment the TTL and try again until the maximum hop count.
• C. It will print '* * *' for the attempts and increase the maximum hop count by one.
• D. It will exit gracefully, and indicate to the user that the destination is unreachable.

Answer: B

NEW QUESTION # 41
You work as a Network Administrator for Secure World Inc. The company has a Linux-based network. You want to run a command with the changed root directory. Which of the following commands will you use?

• A. chdir <new root> <command>
• B. chroot <new root> <command>
• C. route <new root> <command>
• D. ls <new root> <command>

Answer: B

NEW QUESTION # 42
......

GSEC Cert Guide PDF 100% Cover Real Exam Questions: https://actualtests.crampdf.com/GSEC-exam-prep-dumps.html