GIAC Certified Perimeter Protection Analyst (GPPA) Free Practice Test

Question 1

Which of the following fields is 13 bits long and specifies the offset of a particular fragment relative to the beginning of the original un-fragmented IP datagram?

A. Fragment offset

B. Protocol

C. Header checksum

D. Time to live

Correct Answer: A

Question 2

Session splicing is an IDS evasion technique in which an attacker delivers data in multiple small-sized packets to the target computer. Hence, it becomes very difficult for an IDS to detect the attack signatures of such attacks.
Which of the following tools can be used to perform session splicing attacks?
Each correct answer represents a complete solution. (Choose all that apply.)

A. Whisker

B. Y.A.T.

C. Nessus

D. Fragroute

Correct Answer: A,C

Question 3

You work as a professional Computer Hacking Forensic Investigator for DataEnet Inc. You want to investigate e-mail information of an employee of the company. The suspected employee is using an online e-mail system such as Hotmail or Yahoo.
Which of the following folders on the local computer will you review to accomplish the task?
Each correct answer represents a complete solution. (Choose all that apply.)

A. Cookies folder

B. Temporary Internet Folder

C. History folder

D. Download folder

Correct Answer: A,B,C

Question 4

In which of the following locations can the Cisco IOS file reside?
Each correct answer represents a complete solution. (Choose all that apply.)

A. Flash memory

B. TFTP server

C. ROM

D. NVRAM

Correct Answer: A,B

Question 5

SSH is a network protocol that allows data to be exchanged between two networks using a secure channel.
Which of the following encryption algorithms can be used by the SSH protocol?
Each correct answer represents a complete solution. (Choose all that apply.)

A. IDEA

B. DES

C. RC4

D. Blowfish

Correct Answer: A,B,D

Question 6

Which of the following commands configures a router to encrypt all passwords entered after the command has been executed, as well as all passwords already on the running configuration?

A. no service password-encryption

B. no enable password-encryption

C. enable password-encryption

D. service password-encryption

Correct Answer: D

Question 7

Which of the following techniques allows probing firewall rule-sets and finding entry points into the targeted system or network?

A. Distributed Checksum Clearinghouse

B. Packet collision

C. Packet crafting

D. Network enumerating

Correct Answer: C

Question 8

You work as a Network Administrator for ABC Inc. The company has a corporate intranet setup. A router is configured on your network to connect outside hosts to the internetworking. For security, you want to prevent outside hosts from pinging to the hosts on the internetwork.
Which of the following steps will you take to accomplish the task?

A. Block the UDP protocol through ACL.

B. Block the TCP protocol through ACL.

C. Block the ICMP protocol through ACL.

D. Block the IPv6 protocol through ACL.

Correct Answer: C

Question 9

Which of the following programs can be used to detect stealth port scans performed by a malicious hacker?
Each correct answer represents a complete solution. (Choose all that apply.)

A. scanlogd

B. libnids

C. portsentry

D. nmap

Correct Answer: A,B,C

Welcome to TestSimulate

GIAC Certified Perimeter Protection Analyst (GPPA) Free Practice Test