GIAC Exploit Researcher and Advanced Penetration Tester Sample Questions:
1. What is a common vulnerability in modern network protocols that can be exploited by attackers?
Response:
A) TLS handshake failures
B) Lack of encryption in Telnet sessions
C) Secure Shell (SSH) misconfigurations
D) Buffer overflow in HTTP/2
2. Which of the following techniques are effective in manipulating common network systems to exploit systems?
(Choose Two)
Response:
A) Flooding the network with ICMP packets
B) ARP spoofing
C) Exploiting SMB protocol vulnerabilities
D) Password spraying
3. What is a key feature of Windows Data Execution Prevention (DEP)?
Response:
A) Disallowing the execution of code in non-executable memory regions
B) Preventing unauthorized network access
C) Preventing privilege escalation
D) Preventing the stack from being overwritten
4. Which two techniques can help prevent stack smashing exploits?
(Choose Two)
Response:
A) Avoiding memory dumps
B) Data Execution Prevention (DEP)
C) Using static memory allocation
D) Stack canaries
5. Which of the following is a viable method to bypass stack canaries in modern software?
Response:
A) Overwriting the canary value with a known good canary
B) Use of integer overflow
C) Employing information leakage to reveal the canary
D) Exploiting a race condition
Solutions:
| Question # 1 Answer: B | Question # 2 Answer: B,C | Question # 3 Answer: A | Question # 4 Answer: B,D | Question # 5 Answer: C |

We're so confident of our products that we provide no hassle product exchange.


By Miranda


