GXPN 試験問題を無料オンラインアクセス

Which type of attack targets vulnerabilities in SSL/TLS implementations?
Response:

• A.ARP poisoning
• B.Heartbleed
• C.Smurf attack
• D.SYN flood

Which of the following techniques can be used to defeat stack canaries in a stack smashing exploit?
Response:

• A.Canary brute-forcing
• B.Stack pivoting
• C.Heap spraying
• D.Return-to-libc attacks

In Linux, which type of memory is primarily used to store global and static variables?
Response:

• A.Heap
• B.Register
• C.Data segment
• D.Stack

What is the primary goal of a stack-based buffer overflow attack on a Windows system?
Response:

• A.To disable Windows firewall rules
• B.To overwrite the return address and execute arbitrary code
• C.To exhaust the system's memory resources
• D.To escalate network privileges

Which of the following limitations of fuzzing should be identified by a skilled penetration tester?
(Choose Two)
Response:

• A.Resource-intensive nature
• B.High false-positive rate
• C.Inability to find logic errors
• D.Limited to known vulnerabilities