A security analyst wants to send TCP ACK packets to port 80 on a target to map out firewall rulesets. Which Hping3 command should be used?

hping3 -F -P -U 10.0.0.25 -p 80

What is the expected response from an open port on a non-Windows, RFC 793-compliant system when an Xmas scan is performed?

An ICMP Port Unreachable message.

A "Stealth Scan" or "Half-open Scan" is characterized by which sequence of events for an open port?

Attacker sends SYN, Target sends SYN/ACK, Attacker sends ACK.

Attacker sends SYN, Target sends RST.

Attacker sends SYN, Target sends SYN/ACK, Attacker sends RST.

Attacker sends FIN, Target sends RST.

What is the primary advantage of a Stealth Scan (-sS) over a TCP Connect Scan (-sT)?

It does not complete the TCP handshake, making it less likely to be logged.

It requires fewer system resources.

In a UDP scan, how does a scanner typically determine that a port is closed?

It receives an ICMP "Port Unreachable" message.

It receives a UDP packet in response.

A ping sweep is used to determine which of the following?

The live hosts within a range of IP addresses.

The operating system of a single host.

What is the primary purpose of an IDLE/IPID Header Scan?

To perform a completely anonymous scan by using a "zombie" host.

To perform a very fast scan of all 65,535 ports.

To transfer a file to the target host.

In an IDLE scan, if the IPID of the zombie host increases by 2 after the probe, what does this signify?

The target port is filtered by a firewall.

Which of the following is a listed countermeasure against port scanning?

Configuring IDS rules to detect and block scanning probes.

Disabling all firewalls to improve performance.

Using default vendor passwords for routers.

Keeping all ports open for easier access.

An attacker uses the Nmap command nmap -D RND:10 192.168.1.5. What is the purpose of the -D RND:10 switch?

To use 10 random decoy source IP addresses to obscure the scan's origin.

To scan only 10 random ports on the target.

To set the packet delay to 10 milliseconds.

To repeat the scan 10 times for accuracy.

What is a primary limitation of IP address spoofing for an attacker?

The attacker cannot receive the reply packets, preventing a three-way handshake.

It only works on IPv6 networks.

It requires physical access to the network.

Which of the following is NOT a technique for detecting IP spoofing?

Comparing IP Identification (IPID) numbers

Ingress filtering is a countermeasure against IP spoofing that involves what action?

Filtering incoming packets that appear to come from an internal IP address.

Filtering outgoing packets with an invalid internal source address.

Encrypting all internal network traffic.

Randomizing initial TCP sequence numbers.

What is the primary purpose of using a proxy server during a scan?

To hide the actual source IP address of the attacker.

To scan for both TCP and UDP ports simultaneously.

To guarantee a connection to the target.

What is the primary function of an Anonymizer?

To remove identifying information from the user's traffic.

To increase internet connection speed.

Banner grabbing is a method used to determine which of the following on a remote target?

The operating system and running services.

The physical location of the server.

An attacker can often infer the operating system of a target by observing which two values in the IP and TCP headers of the initial connection packet?

Time To Live (TTL) and TCP Window Size

Source Port and Destination Port

Sequence Number and Acknowledgement Number

A network administrator wants to prevent attackers from easily identifying their Apache web server version. Which of the following is a valid countermeasure against banner grabbing?

Use the ServerSignature Off directive in the configuration file.

Increase the server's TTL value.

Move the server to a different IP address.

Hiding or changing file extensions (e.g., from .aspx to .htm) on a web server is a countermeasure primarily aimed at what?

Masking the underlying server technology to thwart banner grabbing.

Preventing cross-site scripting (XSS).

Improving website loading times.

Drawing a network diagram is valuable to an attacker because it shows:

The logical or physical path to a potential target.

All user passwords on the network.

The contents of the organization's databases.

The antivirus software installed on each machine.

Tools like Network Topology Mapper and The Dude are used for what purpose?

Network discovery and creating visual network diagrams.

What is the primary purpose of using a SYN scan (-sS) in network reconnaissance?

To identify open ports without completing the handshake.

To establish a full TCP connection with the target.

To gather information about the target's operating system.

To perform a denial-of-service attack.

In the context of network security, what does the term 'banner grabbing' refer to?

Identifying services running on open ports by retrieving service banners.

Blocking unauthorized access to a network.

Encrypting data transmitted over the network.

Collecting data from network traffic.

Network Scanning Quiz

Quiz

•

Information Technology (IT)

•

University

•

Practice Problem

•

Medium

Usman Ali

Used 1+ times

FREE Resource

Netcat

Hping3

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

40 questions

ISD-topic 4

Quiz

•

University

40 questions

IoT Informatika kelas 9

Quiz

•

9th Grade - University

46 questions

Prelim: Project Management

Quiz

•

University

45 questions

INFORMATIKA JARINGAN KOMPUTER DAN INTERNET

Quiz

•

10th Grade - University

40 questions

Revision Quiz

Quiz

•

University

40 questions

TIK-9

Quiz

•

8th Grade - University

41 questions

Quiz sobre Redes

Quiz

•

University

40 questions

BTUI'24 - Inter-school ICT Quiz - Quarter Finals

Quiz

•

12th Grade - University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Information Technology (IT)

7 questions

How James Brown Invented Funk

Interactive video

•

10th Grade - University

5 questions

Helping Build the Internet: Valerie Thomas | Great Minds

Interactive video

•

11th Grade - University

12 questions

IREAD Week 4 - Review

Quiz

•

3rd Grade - University

23 questions

Subject Verb Agreement

Quiz

•

9th Grade - University

7 questions

Renewable and Nonrenewable Resources

Interactive video

•

4th Grade - University

19 questions

Review2-TEACHER

Quiz

•

University

15 questions

Pre2_STUDENT

Quiz

•

University

20 questions

Ch. 7 Quadrilateral Quiz Review

Quiz

•

KG - University

Network Scanning Quiz

44 questions

According to the module objectives, what is the primary goal of network scanning?

Which TCP flag is used to initiate a connection between two hosts as part of the three-way handshake?

In the TCP communication process, what is the purpose of the RST flag?

What is the correct sequence of packets in a successful TCP three-way handshake?

Attackers use packet crafting tools like Colasoft Packet Builder to create fragmented packets for what primary purpose?

Why are traditional network scanning techniques considered computationally less feasible on IPv6 networks?

Which popular command-line tool is used for network discovery and security auditing, with capabilities for host discovery, port scanning, and OS detection?

An attacker wants to perform a scan that completes the three-way handshake, making it easily detectable but reliable. Which Nmap scan type should they use?

Which tool is described as a command-line packet crafting tool that can be used for firewall testing, remote OS fingerprinting, and advanced traceroute?

Which Hping3 command would be used to perform an ICMP ping?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Information Technology (IT)