GFACT CERTIFICATION EXAM
What is the highest level of privileges on a window machine?
A) Admin
B) User
C) SYSTEM
D) Root - ANSWERS-SYSTEM
What is considered the easiest way to bypass UAC? (User Access
Control)
A) To ask the administrator for the permissions
B) To Privilege escalate your user account
C) To become the SYSTEM User
D) None of the above - ANSWERS-To ask the administrator for the
permissions
Which packet type is used when a graceful TCP Teardown fails?
A) FIN
B) RST
C)EXIT
D) ACK/FIN - ANSWERS-RST
,Which of the following is a likely source of logs for HTTP network
traffic data?
A) Layer 2 switch
B)Firewall
C)DNS Server
D) Active Directory Server - ANSWERS-Firewall
Which of the following is a Windows Database of settings for both
the operating system and applications?
A) Group Policy
B) User Access Control
C) PowerShell
D)Registry - ANSWERS-Registry
A Red Team would use the following command for which purposes?
# nmap -vv -sS -p- 10.10.1.1
A) Identifying open ports that could be used to compromise a host
B) Determining updates needed for the host's asset inventory record
C) Identifying unauthorized open ports to disable on the host
,D) Determining version information for services running on the host -
ANSWERS-Identifying open ports that could be used to compromise
a host
What is the software or firmware platform that hosts a virtual machine
called?
A) Guest System
B) Hypervisor
C) Container
D) Operating System - ANSWERS-Hypervisor
Which of the following Linux permissions would allow the owner of
a file to read, write, and execute a file while allowing everyone else to
read and execute?
A)755
B)700
C)644
D)411 - ANSWERS-755
In Linux which command will show the mode that the operating
system is currently running under?
A) runlevel
, B) chkconfig
C)uname
D)systemctl - ANSWERS-runlevel
What feature of HTTPS encryption solves the trust problem in the
asymmetric key exchange?
A) The Website's SSL certificate
B) Each visitor providing the same public key
C) Each visitor providing the same private key
D) Unique session IDs - ANSWERS-The Website's SSL certificate
Which of the following can cause a permissions issue on an Apache
web server?
A) Setting ownership of /var/www to the www-data user and www-
data group
B) Setting file permissions to 644 on the website
C) Setting directory permissions to 755 on the web site
D) Adding www-data user to the server's administrator group -
ANSWERS-Adding www-data user to the server's administrator
group
What file attribute is the penetration tester looking to find using the
command below?
What is the highest level of privileges on a window machine?
A) Admin
B) User
C) SYSTEM
D) Root - ANSWERS-SYSTEM
What is considered the easiest way to bypass UAC? (User Access
Control)
A) To ask the administrator for the permissions
B) To Privilege escalate your user account
C) To become the SYSTEM User
D) None of the above - ANSWERS-To ask the administrator for the
permissions
Which packet type is used when a graceful TCP Teardown fails?
A) FIN
B) RST
C)EXIT
D) ACK/FIN - ANSWERS-RST
,Which of the following is a likely source of logs for HTTP network
traffic data?
A) Layer 2 switch
B)Firewall
C)DNS Server
D) Active Directory Server - ANSWERS-Firewall
Which of the following is a Windows Database of settings for both
the operating system and applications?
A) Group Policy
B) User Access Control
C) PowerShell
D)Registry - ANSWERS-Registry
A Red Team would use the following command for which purposes?
# nmap -vv -sS -p- 10.10.1.1
A) Identifying open ports that could be used to compromise a host
B) Determining updates needed for the host's asset inventory record
C) Identifying unauthorized open ports to disable on the host
,D) Determining version information for services running on the host -
ANSWERS-Identifying open ports that could be used to compromise
a host
What is the software or firmware platform that hosts a virtual machine
called?
A) Guest System
B) Hypervisor
C) Container
D) Operating System - ANSWERS-Hypervisor
Which of the following Linux permissions would allow the owner of
a file to read, write, and execute a file while allowing everyone else to
read and execute?
A)755
B)700
C)644
D)411 - ANSWERS-755
In Linux which command will show the mode that the operating
system is currently running under?
A) runlevel
, B) chkconfig
C)uname
D)systemctl - ANSWERS-runlevel
What feature of HTTPS encryption solves the trust problem in the
asymmetric key exchange?
A) The Website's SSL certificate
B) Each visitor providing the same public key
C) Each visitor providing the same private key
D) Unique session IDs - ANSWERS-The Website's SSL certificate
Which of the following can cause a permissions issue on an Apache
web server?
A) Setting ownership of /var/www to the www-data user and www-
data group
B) Setting file permissions to 644 on the website
C) Setting directory permissions to 755 on the web site
D) Adding www-data user to the server's administrator group -
ANSWERS-Adding www-data user to the server's administrator
group
What file attribute is the penetration tester looking to find using the
command below?
