| Exam Code/Number: | GPENJoin the discussion |
| Exam Name: | GIAC Certified Penetration Tester |
| Certification: | GIAC |
| Question Number: | 405 |
| Publish Date: | Jul 16, 2026 |
|
Rating
100%
|
|
John works as a professional Ethical Hacker. He has been assigned the project of testing the security of www.we-are-secure.com. He has successfully completed the following pre-attack phases while testing the security of the server:
Footprinting Scanning Now he wants to conduct the enumeration phase.
Which of the following tools can John use to conduct it?
Each correct answer represents a complete solution. Choose all that apply.
Which of the following tasks is NOT performed into the enumeration phase?
While performing an assessment on a banking site, you discover the following link:
hnps://mybank.com/xfer.aspMer_toMaccount_number]&amount-[dollars] Assuming authenticated banking users can be lured to your web site, which crafted html tag may be used to launch a XSRF attack?