John works as a C programmer. He develops the following C program:
#include <stdlib.h>
#include <stdio.h>
#include <string.h>
int buffer(char *str) {
char buffer1[10];
strcpy(buffer1, str);
return 1;
}
int main(int argc, char *argv[]) {
buffer (argv[1]);
printf("Executed\n");
return 1;
}
His program is vulnerable to a __________ attack.

• A.Denial-of-Service
• B.Buffer overflow
• C.SQL injection
• D.Cross site scripting

Comment: *

Name: *

Email: *

Verification: *

Which of the following Incident handling process phases is responsible for defining rules, collaborating human
workforce, creating a back-up plan, and testing the plans for an enterprise?

• A.Recovery phase
• B.Identification phase
• C.Containment phase
• D.Eradication phase
• E.Preparation phase

Comment: *

Name: *

Email: *

Verification: *

John works as a professional Ethical Hacker. He is assigned a project to test the security of www.weare-secure.com. He
installs a rootkit on the Linux server of the We-are-secure network. Which of the following statements are true about
rootkits?
Each correct answer represents a complete solution. Choose all that apply.

• A.They allow an attacker to conduct a buffer overflow.
• B.They allow an attacker to run packet sniffers secretly to capture passwords.
• C.They allow an attacker to replace utility programs that can be used to detect the attacker's
  activity.
• D.They allow an attacker to set a Trojan in the operating system and thus open a backdoor for
  anytime access.

Comment: *

Name: *

Email: *

Verification: *

Which of the following keyloggers cannot be detected by anti-virus or anti-spyware products?

• A.Kernel keylogger
• B.Software keylogger
• C.Hardware keylogger
• D.OS keylogger

Comment: *

Name: *

Email: *

Verification: *

You want to use PGP files for steganography. Which of the following tools will you use to accomplish the task?

• A.Blindside
• B.Snow
• C.ImageHide
• D.Stealth

Comment: *

Name: *

Email: *

Verification: *