A security analyst wants to send TCP ACK packets to port 80 on a target to map out firewall rulesets. Which Hping3 command should be used?

hping3 -F -P -U 10.0.0.25 -p 80

What is the expected response from an open port on a non-Windows, RFC 793-compliant system when an Xmas scan is performed?

An ICMP Port Unreachable message.

A "Stealth Scan" or "Half-open Scan" is characterized by which sequence of events for an open port?

Attacker sends SYN, Target sends SYN/ACK, Attacker sends ACK.

Attacker sends SYN, Target sends RST.

Attacker sends SYN, Target sends SYN/ACK, Attacker sends RST.

Attacker sends FIN, Target sends RST.

What is the primary advantage of a Stealth Scan (-sS) over a TCP Connect Scan (-sT)?

It does not complete the TCP handshake, making it less likely to be logged.

It requires fewer system resources.

In a UDP scan, how does a scanner typically determine that a port is closed?

It receives an ICMP "Port Unreachable" message.

It receives a UDP packet in response.

A ping sweep is used to determine which of the following?

The live hosts within a range of IP addresses.

The operating system of a single host.

What is the primary purpose of an IDLE/IPID Header Scan?

To perform a completely anonymous scan by using a "zombie" host.

To perform a very fast scan of all 65,535 ports.

To transfer a file to the target host.

In an IDLE scan, if the IPID of the zombie host increases by 2 after the probe, what does this signify?

The target port is filtered by a firewall.

Which of the following is a listed countermeasure against port scanning?

Configuring IDS rules to detect and block scanning probes.

Disabling all firewalls to improve performance.

Using default vendor passwords for routers.

Keeping all ports open for easier access.

An attacker uses the Nmap command nmap -D RND:10 192.168.1.5. What is the purpose of the -D RND:10 switch?

To use 10 random decoy source IP addresses to obscure the scan's origin.

To scan only 10 random ports on the target.

To set the packet delay to 10 milliseconds.

To repeat the scan 10 times for accuracy.

What is a primary limitation of IP address spoofing for an attacker?

The attacker cannot receive the reply packets, preventing a three-way handshake.

It only works on IPv6 networks.

It requires physical access to the network.

Which of the following is NOT a technique for detecting IP spoofing?

Comparing IP Identification (IPID) numbers

Ingress filtering is a countermeasure against IP spoofing that involves what action?

Filtering incoming packets that appear to come from an internal IP address.

Filtering outgoing packets with an invalid internal source address.

Encrypting all internal network traffic.

Randomizing initial TCP sequence numbers.

What is the primary purpose of using a proxy server during a scan?

To hide the actual source IP address of the attacker.

To scan for both TCP and UDP ports simultaneously.

To guarantee a connection to the target.

What is the primary function of an Anonymizer?

To remove identifying information from the user's traffic.

To increase internet connection speed.

Banner grabbing is a method used to determine which of the following on a remote target?

The operating system and running services.

The physical location of the server.

An attacker can often infer the operating system of a target by observing which two values in the IP and TCP headers of the initial connection packet?

Time To Live (TTL) and TCP Window Size

Source Port and Destination Port

Sequence Number and Acknowledgement Number

A network administrator wants to prevent attackers from easily identifying their Apache web server version. Which of the following is a valid countermeasure against banner grabbing?

Use the ServerSignature Off directive in the configuration file.

Increase the server's TTL value.

Move the server to a different IP address.

Hiding or changing file extensions (e.g., from .aspx to .htm) on a web server is a countermeasure primarily aimed at what?

Masking the underlying server technology to thwart banner grabbing.

Preventing cross-site scripting (XSS).

Improving website loading times.

Drawing a network diagram is valuable to an attacker because it shows:

The logical or physical path to a potential target.

All user passwords on the network.

The contents of the organization's databases.

The antivirus software installed on each machine.

Tools like Network Topology Mapper and The Dude are used for what purpose?

Network discovery and creating visual network diagrams.

What is the primary purpose of using a SYN scan (-sS) in network reconnaissance?

To identify open ports without completing the handshake.

To establish a full TCP connection with the target.

To gather information about the target's operating system.

To perform a denial-of-service attack.

In the context of network security, what does the term 'banner grabbing' refer to?

Identifying services running on open ports by retrieving service banners.

Blocking unauthorized access to a network.

Encrypting data transmitted over the network.

Collecting data from network traffic.

Network Scanning Quiz

Authored by Usman Ali

Information Technology (IT)

University

Used 1+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

44 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

According to the module objectives, what is the primary goal of network scanning?

To gain administrative access to a server.

To identify live hosts, open ports, and services on a network.

To launch a Denial-of-Service (DoS) attack.

To encrypt network traffic.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which TCP flag is used to initiate a connection between two hosts as part of the three-way handshake?

ACK

FIN

RST

SYN

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

In the TCP communication process, what is the purpose of the RST flag?

To acknowledge the receipt of a packet.

To initiate a new connection.

To reset or terminate a connection abruptly.

To indicate the end of data transmission.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the correct sequence of packets in a successful TCP three-way handshake?

SYN -> ACK -> SYN-ACK

SYN -> SYN-ACK -> ACK

FIN -> FIN-ACK -> ACK

SYN -> RST -> ACK

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Attackers use packet crafting tools like Colasoft Packet Builder to create fragmented packets for what primary purpose?

To increase the speed of the network.

To create backups of network configurations.

To bypass firewalls and Intrusion Detection Systems (IDS).

To test the physical network cabling.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Why are traditional network scanning techniques considered computationally less feasible on IPv6 networks?

IPv6 packets cannot be fragmented.

All IPv6 traffic is encrypted by default.

The vastly larger address space (2^64 hosts per subnet) makes brute-force scanning impractical.

Most scanning tools do not support the IPv6 header format.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which popular command-line tool is used for network discovery and security auditing, with capabilities for host discovery, port scanning, and OS detection?

Wireshark

Nmap

Netcat

Hping3

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

41 questions

CYB125 - Ch1

Quiz

•

University

40 questions

INFORMATIKA 11 PG

Quiz

•

11th Grade - University

41 questions

Quiz sobre Redes

Quiz

•

University

46 questions

Understanding Hidden Data in Microsoft Word Documents

Quiz

•

10th Grade - University

40 questions

GVC WEEK 2

Quiz

•

University

40 questions

Python Programming Quiz

Quiz

•

University

40 questions

Photoshop and Data Visualization Quiz

Quiz

•

University

40 questions

Prelim Management Science

Quiz

•

University

Popular Resources on Wayground

10 questions

5.P.1.3 Distance/Time Graphs

Quiz

•

5th Grade

10 questions

Fire Drill

Quiz

•

2nd - 5th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

22 questions

School Wide Vocab Group 1 Master

Quiz

•

6th - 8th Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

20 questions

Inferences

Quiz

•

4th Grade

12 questions

What makes Nebraska's government unique?

Quiz

•

4th - 5th Grade

Discover more resources for Information Technology (IT)

18 questions

Informative or Argumentative essay

Quiz

•

5th Grade - University

20 questions

Disney Trivia

Quiz

•

University

5 questions

Human Impacts: How Do People Disrupt Ecosystems?

Interactive video

•

4th Grade - University

7 questions

Human Body Systems Overview (Updated 2024)

Interactive video

•

11th Grade - University

20 questions

Context Clues

Quiz

•

KG - University

7 questions

Comparing Fractions

Interactive video

•

1st Grade - University

20 questions

10.4 Exponential Functions

Quiz

•

8th Grade - University

30 questions

PSYCH 250: Exam 3

Quiz

•

University

Network Scanning Quiz

According to the module objectives, what is the primary goal of network scanning?

Which TCP flag is used to initiate a connection between two hosts as part of the three-way handshake?

In the TCP communication process, what is the purpose of the RST flag?

What is the correct sequence of packets in a successful TCP three-way handshake?

Attackers use packet crafting tools like Colasoft Packet Builder to create fragmented packets for what primary purpose?

Why are traditional network scanning techniques considered computationally less feasible on IPv6 networks?

Which popular command-line tool is used for network discovery and security auditing, with capabilities for host discovery, port scanning, and OS detection?

An attacker wants to perform a scan that completes the three-way handshake, making it easily detectable but reliable. Which Nmap scan type should they use?

Which tool is described as a command-line packet crafting tool that can be used for firewall testing, remote OS fingerprinting, and advanced traceroute?

Which Hping3 command would be used to perform an ICMP ping?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Information Technology (IT)