312-50 Free Practice Test

- (Topic 15)
Joe Hacker is going wardriving. He is going to use PrismStumbler and wants it to go to a GPS mapping software application. What is the recommended and well-known GPS mapping package that would interface with PrismStumbler?
Select the best answer.

1. A. GPSDrive
2. B. GPSMap
3. C. WinPcap
4. D. Microsoft Mappoint

Correct Answer: A

GPSDrive is a Linux GPS mapping package. It recommended to be used to send PrismStumbler data to so that it can be mapped. GPSMap is a generic term and not a real software package. WinPcap is a packet capture library for Windows. It is used to capture packets and deliver them to other programs for analysis. As it is for Windows, it isn't going to do what Joe Hacker is wanting to do. Microsoft Mappoint is a Windows application. PrismStumbler is a Linux application. Thus, these two are not going to work well together.

- (Topic 11)
What is Form Scalpel used for?

1. A. Dissecting HTML Forms
2. B. Dissecting SQL Forms
3. C. Analysis of Access Database Forms
4. D. Troubleshooting Netscape Navigator
5. E. Quatro Pro Analysis Tool

Correct Answer: A
Form Scalpel automatically extracts forms from a given web page and splits up all fields for editing and manipulation.

- (Topic 8)
SYN Flood is a DOS attack in which an attacker deliberately violates the three-way handshake and opens a large number of half-open TCP connections.
The signature for SYN Flood attack is:

1. A. The source and destination address having the same value.
2. B. The source and destination port numbers having the same value.
3. C. A large number of SYN packets appearing on a network without the corresponding reply packets.
4. D. A large number of SYN packets appearing on a network with the corresponding reply packets.

Correct Answer: C
A SYN attack occurs when an attacker exploits the use of the buffer space during a Transmission Control Protocol (TCP) session initialization handshake. The attacker floods the target system's small "in-process" queue with connection requests, but it does not respond when a target system replies to those requests. This causes the target system to time out while waiting for the proper response, which makes the system crash or become unusable.

- (Topic 6)
Which definition below best describes a covert channel?

1. A. Making use of a Protocol in a way it was not intended to be used
2. B. It is the multiplexing taking place on communication link
3. C. It is one of the weak channels used by WEP that makes it insecure
4. D. A Server Program using a port that is not well known

Correct Answer: A
A covert channel is a hidden communication channel not intended for information transfer at all. Redundancy can often be used to communicate in a covert way. There are several ways that hidden communication can be set up.

- (Topic 19)
You are attempting to map out the firewall policy for an organization. You discover your target system is one hop beyond the firewall. Using hping2, you send SYN packets with the exact TTL of the target system starting at port 1 and going up to port 1024. What is this process known as?

1. A. Footprinting
2. B. Firewalking
3. C. Enumeration
4. D. Idle scanning

Correct Answer: B
Firewalking uses a traceroute-like IP packet analysis to determine whether or not a particular packet can pass from the attacker’s host to a destination host through a packet-filtering device. This technique can be used to map ‘open’ or ‘pass through’ ports on a gateway. More over, it can determine whether packets with various control information can pass through a given gateway.