TestOut Ethical Hacker Pro Final
Review (Labs) Questions and Correct
Answers
Complete this lab as follows:
Right-click Start and select Windows PowerShell (Admin).
Maximize the window for easier viewing.
At the prompt, type Get-Eventlog -logname * and press Enter.In the Entries
column, notice the number of entries for the logs.
Type Clear-Eventlog -logname Application and press Enter.
Type Clear-Eventlog -logname System and press Enter.
Type Get-Eventlog -logname * and press Enter.The log entries for Application is
zero. The log entries for System is one because another event occurred between
the times you cleared the log and viewed the entry list.
8.4.5 You are a cybersecurity consultant and have been asked to work with the
ACME, Inc. company to ensure that their network is protected from hackers. As
part of the tests, you need to clear a few log files.
In this lab, your task is to use Windows PowerShell (as Admin) to clear the
following event logs:
Use get-eventlog to view the available event logs.
,Use clear-eventlog to clear the Application and System logs.
Complete this lab as follows:
Right-click Start and select Windows PowerShell (Admin).
Maximize the window for easier viewing.
At the command prompt, type auditpol /get /category:* and press Enter to view
the current audit policies.Notice the different settings used for each system.
Type auditpol /clear /y and press Enter to disable all audit policies.
Type auditpol /get /category:* and press Enter to confirm that the audits were
disabled.Notice that all of the polices are now set to No Auditing.
8.4.6 You are a cybersecurity consultant and have been asked to work with the
ACME, Inc. company to ensure their network is protected from hackers. As part of
the tests, you need to disable logging on a Windows system.
In this lab, your task is to use Windows PowerShell (as Admin) to:
View the current audit policies on the system.
Disable all audit policies.
Confirm that all the audits were disabled.
Complete this lab as follows:
Encrypt the user data into the file to be shared as follows: In the search field on
the taskbar, type OpenStego. Under Best match, select OpenStego. In the
Message File field, select the ellipses at the end of the field. Select John.txt.
,Select Open. In the Cover File field, select the ellipses at the end of the field.
Select gear.png file. Select Open. In the Output Stego File field, select the
ellipses at the end of the field. In the File name field, enter send.png. Select
Open.
Password protect the file as follows: In the Password field, enter NoMor3L3@ks!
In the Confirm Password field, enter NoMor3L3@ks! Select Hide Data. Select OK.
Extract the data and open the file as follows: Under Data Hiding, select Extract
Data. In the Input Stego File field, select the ellipses. Select send.png file with
the encryption. Select Open. In the Output Folder for Message File field, select
the ellipses. Double-click Export to set it as the destination of the output the file.
Click Select Folder. In the Password field, enter NoMor3L3@ks! as the password.
Select Extract Data. Select OK. From the taskbar, open File Explorer. Double-click
Documents to navigate to the folder. Double-click Export to navigate to the
folder. Double-click John.txt to open the output file and verify that the
decryption process was successful.
8.4.11 You are the IT security administrator for a small corporate network.
Recently, some of your firm's proprietary data leaked online. You have been asked
to use steganography to encrypt data into a file that will be shared with a business
partner. The data will allow you to track the source if the information is leaked
again.
In this lab, your task is to use OpenStego to hide data inside a picture file as
follows:
Encrypt the user data found in John.txt into gear.png.
Save the output file into the Documents folder as send.png.
Password protect the file with NoMor3L3@ks! as the password.
Confirm the functionality of the steganography by extracting the data from
send.png into the Exports folder and opening the file to view the hidden user data.
, Complete this lab as follows:
From the Favorites bar, open Terminal.
At the prompt, type nmap -p- 198.28.1.0/24 and press Enter to scan for open
ports on all servers located on this network.
Type nmap -p- 192.168.0.0/24 and press Enter to scan for open ports on all the
servers located on this network.
In the top right, select Answer Questions.
Answer the questions.
Select Score Lab.
9.2.5 You are a cybersecurity expert performing a penetration test for a client.
Your client is concerned that hackers may be performing port scanning on the
network, hoping to find open ports that could leave the company vulnerable to
attacks.
In this lab, your task is to use nmap to detect open ports as follows:
Scan the following network addresses: 198.28.1.0/24 192.168.0.0/24
Find and report any open ports, especially those susceptible to hacking attacks.
Answer the questions.
Complete this lab as follows:
From the Favorites bar, open Zenmap.
In the Command field, type nmap -p 5900 192.168.0.0/24.
Select Scan.
From the results, find the computer with port 5900 open.
Review (Labs) Questions and Correct
Answers
Complete this lab as follows:
Right-click Start and select Windows PowerShell (Admin).
Maximize the window for easier viewing.
At the prompt, type Get-Eventlog -logname * and press Enter.In the Entries
column, notice the number of entries for the logs.
Type Clear-Eventlog -logname Application and press Enter.
Type Clear-Eventlog -logname System and press Enter.
Type Get-Eventlog -logname * and press Enter.The log entries for Application is
zero. The log entries for System is one because another event occurred between
the times you cleared the log and viewed the entry list.
8.4.5 You are a cybersecurity consultant and have been asked to work with the
ACME, Inc. company to ensure that their network is protected from hackers. As
part of the tests, you need to clear a few log files.
In this lab, your task is to use Windows PowerShell (as Admin) to clear the
following event logs:
Use get-eventlog to view the available event logs.
,Use clear-eventlog to clear the Application and System logs.
Complete this lab as follows:
Right-click Start and select Windows PowerShell (Admin).
Maximize the window for easier viewing.
At the command prompt, type auditpol /get /category:* and press Enter to view
the current audit policies.Notice the different settings used for each system.
Type auditpol /clear /y and press Enter to disable all audit policies.
Type auditpol /get /category:* and press Enter to confirm that the audits were
disabled.Notice that all of the polices are now set to No Auditing.
8.4.6 You are a cybersecurity consultant and have been asked to work with the
ACME, Inc. company to ensure their network is protected from hackers. As part of
the tests, you need to disable logging on a Windows system.
In this lab, your task is to use Windows PowerShell (as Admin) to:
View the current audit policies on the system.
Disable all audit policies.
Confirm that all the audits were disabled.
Complete this lab as follows:
Encrypt the user data into the file to be shared as follows: In the search field on
the taskbar, type OpenStego. Under Best match, select OpenStego. In the
Message File field, select the ellipses at the end of the field. Select John.txt.
,Select Open. In the Cover File field, select the ellipses at the end of the field.
Select gear.png file. Select Open. In the Output Stego File field, select the
ellipses at the end of the field. In the File name field, enter send.png. Select
Open.
Password protect the file as follows: In the Password field, enter NoMor3L3@ks!
In the Confirm Password field, enter NoMor3L3@ks! Select Hide Data. Select OK.
Extract the data and open the file as follows: Under Data Hiding, select Extract
Data. In the Input Stego File field, select the ellipses. Select send.png file with
the encryption. Select Open. In the Output Folder for Message File field, select
the ellipses. Double-click Export to set it as the destination of the output the file.
Click Select Folder. In the Password field, enter NoMor3L3@ks! as the password.
Select Extract Data. Select OK. From the taskbar, open File Explorer. Double-click
Documents to navigate to the folder. Double-click Export to navigate to the
folder. Double-click John.txt to open the output file and verify that the
decryption process was successful.
8.4.11 You are the IT security administrator for a small corporate network.
Recently, some of your firm's proprietary data leaked online. You have been asked
to use steganography to encrypt data into a file that will be shared with a business
partner. The data will allow you to track the source if the information is leaked
again.
In this lab, your task is to use OpenStego to hide data inside a picture file as
follows:
Encrypt the user data found in John.txt into gear.png.
Save the output file into the Documents folder as send.png.
Password protect the file with NoMor3L3@ks! as the password.
Confirm the functionality of the steganography by extracting the data from
send.png into the Exports folder and opening the file to view the hidden user data.
, Complete this lab as follows:
From the Favorites bar, open Terminal.
At the prompt, type nmap -p- 198.28.1.0/24 and press Enter to scan for open
ports on all servers located on this network.
Type nmap -p- 192.168.0.0/24 and press Enter to scan for open ports on all the
servers located on this network.
In the top right, select Answer Questions.
Answer the questions.
Select Score Lab.
9.2.5 You are a cybersecurity expert performing a penetration test for a client.
Your client is concerned that hackers may be performing port scanning on the
network, hoping to find open ports that could leave the company vulnerable to
attacks.
In this lab, your task is to use nmap to detect open ports as follows:
Scan the following network addresses: 198.28.1.0/24 192.168.0.0/24
Find and report any open ports, especially those susceptible to hacking attacks.
Answer the questions.
Complete this lab as follows:
From the Favorites bar, open Zenmap.
In the Command field, type nmap -p 5900 192.168.0.0/24.
Select Scan.
From the results, find the computer with port 5900 open.
