• Home
  • Articles
  • [2024] Use Valid New Free GSEC Exam Dumps & Answers [Q100-Q120]

[2024] Use Valid New Free GSEC Exam Dumps & Answers [Q100-Q120]

Share

[2024] Use Valid New Free GSEC Exam Dumps & Answers

GSEC Braindumps PDF, GIAC GSEC Exam Cram

NEW QUESTION # 100
Which of the following BEST describes the two job functions of Microsoft Baseline Security Analyzer (MBSA)?

  • A. Configuration management and alerting system
  • B. Auditing tool and alerting system
  • C. Security patching and vulnerability scanner
  • D. Vulnerability scanner and auditing tool

Answer: C


NEW QUESTION # 101
What would the following IP tables command do?
IP tables -I INPUT -s 99.23.45.1/32 -j DROP

  • A. Input all packers to the source address
  • B. Drop all packets from the source address
  • C. Drop all packets to the specified address
  • D. Log all packets to or from the specified address

Answer: B


NEW QUESTION # 102
What is the motivation behind SYN/FIN scanning?

  • A. The SYN/FIN combination is useful for signaling to certain Trojans.
  • B. SYN/FIN packets are commonly used to launch denial of service attacks against BSD hosts.
  • C. The crafted SYN/FIN packet sometimes gets past firewalls and filtering routers.
  • D. A SYN/FIN packet is used in session hijacking to take over a session.

Answer: B


NEW QUESTION # 103
You work as a Network Administrator for Secure World Inc. The company has a Linux-based network. You want to run a command with the changed root directory. Which of the following commands will you use?

  • A. route <new root> <command>
  • B. chroot <new root> <command>
  • C. ls <new root> <command>
  • D. chdir <new root> <command>

Answer: B


NEW QUESTION # 104
Which of the following statements about a bastion host is true?

  • A. It is a computer that is used to resolve the host name to an IP address.
  • B. It is a computer that is used to resolve the NetBIOS name to an IP address.
  • C. It is a computer that is accessible from the Internet to collect information about internal networks.
  • D. It is a computer that must be made secure because it is accessible from the Internet and hence is more vulnerable to attacks.

Answer: D


NEW QUESTION # 105
Which Defense-in-Depth principle starts with an awareness of the value of each section of information within an organization?

  • A. Perimeter layering
  • B. Information centric defense
  • C. General information protection
  • D. Uniform information protection

Answer: B

Explanation:
Explanation/Reference:


NEW QUESTION # 106
Which of the following statements about the integrity concept of information security management are true?
Each correct answer represents a complete solution. Choose three.

  • A. It ensures that unauthorized modifications are not made to data by authorized personnel or processes.
  • B. It ensures that internal information is consistent among all subentities and also consistent with the real- world, external situation.
  • C. It determines the actions and behaviors of a single individual within a system
  • D. It ensures that modifications are not made to data by unauthorized personnel or processes.

Answer: A,B,D


NEW QUESTION # 107
Which of the following protocols is used by a host that knows its own MAC (Media Access Control) address to query a server for its own IP address?

  • A. RARP
  • B. DNS
  • C. ARP
  • D. RDNS

Answer: A


NEW QUESTION # 108
In trace route results, what is the significance of an * result?

  • A. No reply was received for a particular hop.
  • B. The target host was successfully reached.
  • C. A listening port was identified.
  • D. A reply was returned in less than a second.

Answer: A


NEW QUESTION # 109
Which of the following is the reason of using Faraday cage?

  • A. To prevent Denial-of-Service (DoS) attack
  • B. To prevent shoulder surfing
  • C. To prevent mail bombing
  • D. To prevent data emanation

Answer: D


NEW QUESTION # 110
John works as a Network Administrator for Perfect Solutions Inc. The company has a Linux-based network. John is working as a root user on the Linux operating system. Which of the following commands will John use to display information about all mounted file systems? Each correct answer represents a complete solution. Choose all that apply.

  • A. df
  • B. du
  • C. df -m
  • D. ls

Answer: A,C


NEW QUESTION # 111
Which of the following is a type of countermeasure that can be deployed to ensure that a threat vector does not meet a vulnerability?

  • A. Subversive controls
  • B. Detection controls
  • C. Monitoring controls
  • D. Prevention controls

Answer: D


NEW QUESTION # 112
Which of the following utilities can be used to manage the Windows Firewall (WF) from the command line?

  • A. net.exe
  • B. secedit.exe
  • C. netsh.exe
  • D. sc.exe

Answer: C


NEW QUESTION # 113
Which of the following statements about Microsoft hotfix are true? Each correct answer represents a complete solution. Choose two.

  • A. It is the term used by Microsoft for major service pack releases.
  • B. It is a collection of files used by Microsoft for software updates released between major service pack releases.
  • C. It is generally related to the problems of a Web server's performance.
  • D. It is generally related to security problems.

Answer: B,D


NEW QUESTION # 114
Which of the following is an Implementation of PKI?

  • A. SHA-1
  • B. SSL
  • C. 3DES
  • D. Kerberos

Answer: B


NEW QUESTION # 115
Which of the following protocols is responsible for the resolution of IP addresses to media access control (MAC) addresses?

  • A. ARP
  • B. ICMP
  • C. HTTP
  • D. PPP

Answer: A


NEW QUESTION # 116
Victor wants to send an encrypted message to his friend. He is using certain steganography technique to accomplish this task. He takes a cover object and changes it accordingly to hide information. This secret information is recovered only when the algorithm compares the changed cover with the original cover. Which of the following Steganography methods is Victor using to accomplish the task?

  • A. The cover generation technique
  • B. The spread spectrum technique
  • C. The distortion technique
  • D. The substitution technique

Answer: C


NEW QUESTION # 117
When trace route fails to get a timely response for a packet after three tries, which action will it take?

  • A. It will print '* * *' for the attempts and increase the maximum hop count by one.
  • B. It will increase the timeout for the hop and resend the packets.
  • C. It will print '* * *' for the attempts, increment the TTL and try again until the maximum hop count.
  • D. It will exit gracefully, and indicate to the user that the destination is unreachable.

Answer: C


NEW QUESTION # 118
You have set up a local area network for your company. Your firewall separates your network into several sections: a DMZ with semi-public servers (web, dns, email) and an intranet with private servers. A penetration tester gains access to both sections and installs sniffers in each. He is able to capture network traffic for all the devices in the private section but only for one device (the device with the sniffer) in the DMZ. What can be inferred about the design of the system?

  • A. You installed a hub in the private section and a switch in the DMZ
  • B. You installed a switch in the private section and a router in the DMZ
  • C. You installed a router in the private section and a switch in the DMZ
  • D. You installed a switch in the private section and a hub in the DMZ

Answer: A


NEW QUESTION # 119
Which AWS service integrates with the Amazon API Gateway to provision and renew TLS encryption needs for data in transit?

  • A. Key Management Server
  • B. Web Application firewall
  • C. Security Token Service
  • D. Certificate Manager

Answer: D


NEW QUESTION # 120
......

Feel GIAC GSEC Dumps PDF Will likely be The best Option: https://www.freecram.com/GIAC-certification/GSEC-exam-dumps.html

New 2024 GSEC Sample Questions Reliable GSEC Test Engine: https://drive.google.com/open?id=1OwP_FeNb98weVj4LD75IZeAokdw8qRPQ

Related Articles

more
Go To GSEC Questions
0
0
0
10