Question 1

Which tool is specifically designed for performing Man-in-the-Middle attacks by intercepting and modifying network traffic?

Options :

A : ttercap, which supports active and passive dissection of many protocols and includes features for network and host analysis.

B : Wireshark, which can capture and analyze packets but cannot redirect traffic.

C : ain & Abel, which can recover passwords and perform some packet sniffing and poisoning.

D : TCPDump, which passively captures packets without the ability to modify or redirect them.

Answer: A

Question 2

How would you write a Python script to capture and analyze network packets to detect potential vulnerabilities?

Options :

A : import pcap

B : import scapy.all as scapy

C : import netifaces

D : import socket

Answer: B

Question 3

Fill in the blank: The most common file used by attackers to discover subdomains through DNS is called a _______ list.

Options :

A : brute force

B : wordlist

C : dictionary

D : subnames

Answer: C

Question 4

When setting up a script to automate vulnerability scans across multiple systems, which scripting language is typically used for its robust libraries and easy integration with security tools?

Options :

A : PHP, preferred for its ease of use with web servers and direct execution capability.

B : Ruby, which is known for rapid deployment capabilities and native gem support for security tools.

C : Python, due to its extensive support for network-related tasks and easy syntax.

D : JavaScript, widely used for its asynchronous capabilities and interaction with web APIs.

Answer: C

Question 5

Which command would you use to test the ability to move between different network zones?

Options :

A : sudo nmap --packet-trace -p 1-65535 192.168.1.0/24

B : traceroute -T --port=80 192.168.100.1

C : ping 192.168.2.1 -t -l 1400

D : netstat -an | grep ESTABLISHED

Answer: A

Smartly Prepare Exam with Free Online CPENT Practice Test

Buying Options: