Question 1

How should you describe a critical vulnerability found in a client's network infrastructure within the report to ensure proper attention?

Options :

A : emphasize the theoretical possibility of exploiting the vulnerability without real-world examples.

B : describe the vulnerability using technical jargon to ensure only knowledgeable personnel understand.

C : Highlight the speed and ease with which the vulnerability could be exploited without detailing its impact.

D : clearly state the vulnerability-s potential to allow unauthorized access and the impact of data breaches.

Answer: D

Question 2

Fill in the blank: To perform a deauthentication attack against a wireless client, use the command ________ -0 2 -a [AP MAC] -c [Client MAC] mon0.

Options :

A : aireplay-ng is the correct tool for initiating a deauthentication attack in wireless testing.

B : airmon-ng is typically used to monitor network traffic but not specifically for deauthentication.

C : wireshark can capture packets but is not used to send deauthentication packets in active attacks.

D : kismet is used for network detection and is not capable of conducting deauthentication attacks.

Answer: A

Question 3

Which of the following commands could be used to enumerate open ports and services on a target system as part of the data collection phase in threat modeling, helping to identify potential attack vectors that need to be mitigated?

Options :

A : nmap -sS -sV -p 1-65535 target_ip -oA nmap_results

B : masscan -p1-65535 --rate 10000 -oX masscan_output.xml

C : netcat -zv target_ip 1-65535 > scan_results.txt

D : nmap --top-ports 1000 -A -oG top_ports_scan.txt

Answer: A

Question 4

Which tool is specifically designed for performing Man-in-the-Middle attacks by intercepting and modifying network traffic?

Options :

A : ttercap, which supports active and passive dissection of many protocols and includes features for network and host analysis.

B : Wireshark, which can capture and analyze packets but cannot redirect traffic.

C : ain & Abel, which can recover passwords and perform some packet sniffing and poisoning.

D : TCPDump, which passively captures packets without the ability to modify or redirect them.

Answer: A

Question 5

During a penetration test, a payload needs to be developed to maintain persistence on the target system after reboot. Which technique can be embedded in the payload for this purpose?

Options :

A : Registry key modification for startup execution

B : Scheduled task creation for session renewal

C : dding the payload to the authorized_keys file

D : mbedding the payload in a cron job

Answer: A

Free CPENT Mock Exam – Practice Online Confidently

Buying Options: