GFACT CERTIFICATION ACTUAL EXAM
PAPER 2026 QUESTIONS WITH ANSWERS
GRADED A+
◍ GMOB.
Answer: TITLE: MOBILE DEVICE SECURITY
ANALYSTCOURSE:SEC575: Mobile Device Security & Ethical Hacking
◍ GSEC.
Answer: TITLE: SECURITY ESSENTIALS
CERTIFICATIONCOURSE:Security Essentials Bootcamp
◍ GWAPT.
Answer: TITLE: WEB APPLICATION PENETRATION
TESTERCOURSE:SEC542: Web Application Penetration Testing &
Ethical Hacking
◍ DNS over TLS.
Answer: DNS over TLS (Transport Layer Security), DoT is a way to encrypt
DNS using TLS. DoT port 853
◍ GMON.
Answer: TITLE: CONTINUOUS MONITORING
CERTIFICATIONCOURSE:SEC511: Continuous Monitoring & Security
Operations
◍ GISP.
Answer: TITLE: INFORMATION SECURITY
PROFESSIONALCOURSE:MGT414: SANS Training for CISSP Exam
◍ Writing files.
Answer: Python also lets us create new files and write data into them, we
, use the write() method
◍ File Upload Mitigation.
Answer: You can mitigate a file upload vulnerability by following some
simple steps:
◍ apt-get.
Answer: The apt command is incredibly useful to rapidly find, install, or
remove software. The way 'apt' works is by having a list of 'sources'; these
are servers which contain information about available packages, download
links and version information. 'apt update' only updates the list of available
packages.
◍ GICSP.
Answer: TITLE: GLOBAL INDUSTRIAL CYBERSECURITY
PROFESSIONALCOURSE:ICS410: ICS/SCADA Security Essentials
◍ GCED.
Answer: TITLE: CERTIFIED ENTERPRISE
DEFENDERCOURSE:SEC501: Advanced Security Essentials: Enterprise
Defender
◍ GSSP-NET.
Answer: TITLE: SECURE SOFTWARE PROGRAMMER -
.NETCOURSE:DEV544: Secure Coding in .Net Developing Defensible
Applications
◍ Portscanner.
Answer: We use port scanners to find out what ports are listening on a target
system.
◍ Cross Site Scripting Identification.
Answer: A cross-site scripting (XSS) attack is a client-side attack. The
vulnerability typically occurs in areas of the site where some kind of user
input is reflected back to the page.
◍ GCFA.
, Answer: TITLE: CERTIFIED FORENSIC ANALYSTCOURSE:FOR508:
Advanced Digital Forensics and Incident Response
◍ Superuser.
Answer: The account with total control over the operating system and has
permissions to do anything and everything. There is always at least one
superuser account on every Linux system, and the account name is usually
called 'root'. Root account can do absolutely anything it likes, even up to and
including breaking the operating system.
◍ Number Crunching.
Answer: GPUs are used in other mathematically demanding tasks, such as
3D rendering, or encryption. In cyber security, we often use graphics cards
such as these to crack passwords.
◍ DDoS.
Answer: DDoS (Distributed Denial of Service) is where attackers use a huge
number of systems, for example a large bot network they control, and attack
a system all at once.
◍ Windows User Accounts.
Answer: A user account is what you use to sign in to your computer. Default
Accounts Administrator: This account has 'full' control over the machine.
There are some things it can't do (generally something that would break the
operating system), but it can be used to manage other users and install
applications. Guest: he Guest account is used by people who do not have an
actual account on the computer. It is limited in what it can do, and care
should be taken to ensure that this account is not able to do anything that
could cause harm. Default Account: This is used as the template for all new
accounts created on the machine. Any changes made to this account will be
carried over.
◍ GNFA.
Answer: TITLE: NETWORK FORENSIC ANALYSTCOURSE:FOR572:
Advanced NEtwork Forensics & Analysis
, ◍ GAWN.
Answer: TITLE: ASSESSING WIRELESS
NETWORKSCOURSE:SEC617: Wireless Ethical Hacking, Pen Testing &
Defenses
◍ Object-oriented programming.
Answer: Object-oriented programming uses classes to model objects,
capturing both their attributes - the data that describes them - and their
methods - the behaviours they have.
◍ Removing a user.
Answer: Once you have identified the account to be removed, doing so is as
simple as running: net user /delete <username>
◍ Arguments.
Answer: The 'argc' variable is an integer which contains the number of
arguments passed to the program when it was executed. The 'argv' array
contains the data passed in.
◍ GREM.
Answer: TITLE: REVERSE ENGINEERING
MALWARECOURSE:FOR610: Reverse Engineering Malware Tools &
Techniques
◍ IRC Exfil.
Answer: Internet Relay Chat old protocol, but some attackers still use it for
control and exfiltration.
◍ GXPN.
Answer: TITLE: EXPLOIT RESEARCHER & ADVANCED
PENETRATION TESTERCOURSE:SEC660: Advanced Pen Testing,
Exploit Writing & Ethical Hacking
◍ GCIH.
Answer: TITLE: CERTIFIED INCIDENT HANDLERCOURSE:SEC504:
Hacker Tools, Techniques, Exploits & Incident Handling
PAPER 2026 QUESTIONS WITH ANSWERS
GRADED A+
◍ GMOB.
Answer: TITLE: MOBILE DEVICE SECURITY
ANALYSTCOURSE:SEC575: Mobile Device Security & Ethical Hacking
◍ GSEC.
Answer: TITLE: SECURITY ESSENTIALS
CERTIFICATIONCOURSE:Security Essentials Bootcamp
◍ GWAPT.
Answer: TITLE: WEB APPLICATION PENETRATION
TESTERCOURSE:SEC542: Web Application Penetration Testing &
Ethical Hacking
◍ DNS over TLS.
Answer: DNS over TLS (Transport Layer Security), DoT is a way to encrypt
DNS using TLS. DoT port 853
◍ GMON.
Answer: TITLE: CONTINUOUS MONITORING
CERTIFICATIONCOURSE:SEC511: Continuous Monitoring & Security
Operations
◍ GISP.
Answer: TITLE: INFORMATION SECURITY
PROFESSIONALCOURSE:MGT414: SANS Training for CISSP Exam
◍ Writing files.
Answer: Python also lets us create new files and write data into them, we
, use the write() method
◍ File Upload Mitigation.
Answer: You can mitigate a file upload vulnerability by following some
simple steps:
◍ apt-get.
Answer: The apt command is incredibly useful to rapidly find, install, or
remove software. The way 'apt' works is by having a list of 'sources'; these
are servers which contain information about available packages, download
links and version information. 'apt update' only updates the list of available
packages.
◍ GICSP.
Answer: TITLE: GLOBAL INDUSTRIAL CYBERSECURITY
PROFESSIONALCOURSE:ICS410: ICS/SCADA Security Essentials
◍ GCED.
Answer: TITLE: CERTIFIED ENTERPRISE
DEFENDERCOURSE:SEC501: Advanced Security Essentials: Enterprise
Defender
◍ GSSP-NET.
Answer: TITLE: SECURE SOFTWARE PROGRAMMER -
.NETCOURSE:DEV544: Secure Coding in .Net Developing Defensible
Applications
◍ Portscanner.
Answer: We use port scanners to find out what ports are listening on a target
system.
◍ Cross Site Scripting Identification.
Answer: A cross-site scripting (XSS) attack is a client-side attack. The
vulnerability typically occurs in areas of the site where some kind of user
input is reflected back to the page.
◍ GCFA.
, Answer: TITLE: CERTIFIED FORENSIC ANALYSTCOURSE:FOR508:
Advanced Digital Forensics and Incident Response
◍ Superuser.
Answer: The account with total control over the operating system and has
permissions to do anything and everything. There is always at least one
superuser account on every Linux system, and the account name is usually
called 'root'. Root account can do absolutely anything it likes, even up to and
including breaking the operating system.
◍ Number Crunching.
Answer: GPUs are used in other mathematically demanding tasks, such as
3D rendering, or encryption. In cyber security, we often use graphics cards
such as these to crack passwords.
◍ DDoS.
Answer: DDoS (Distributed Denial of Service) is where attackers use a huge
number of systems, for example a large bot network they control, and attack
a system all at once.
◍ Windows User Accounts.
Answer: A user account is what you use to sign in to your computer. Default
Accounts Administrator: This account has 'full' control over the machine.
There are some things it can't do (generally something that would break the
operating system), but it can be used to manage other users and install
applications. Guest: he Guest account is used by people who do not have an
actual account on the computer. It is limited in what it can do, and care
should be taken to ensure that this account is not able to do anything that
could cause harm. Default Account: This is used as the template for all new
accounts created on the machine. Any changes made to this account will be
carried over.
◍ GNFA.
Answer: TITLE: NETWORK FORENSIC ANALYSTCOURSE:FOR572:
Advanced NEtwork Forensics & Analysis
, ◍ GAWN.
Answer: TITLE: ASSESSING WIRELESS
NETWORKSCOURSE:SEC617: Wireless Ethical Hacking, Pen Testing &
Defenses
◍ Object-oriented programming.
Answer: Object-oriented programming uses classes to model objects,
capturing both their attributes - the data that describes them - and their
methods - the behaviours they have.
◍ Removing a user.
Answer: Once you have identified the account to be removed, doing so is as
simple as running: net user /delete <username>
◍ Arguments.
Answer: The 'argc' variable is an integer which contains the number of
arguments passed to the program when it was executed. The 'argv' array
contains the data passed in.
◍ GREM.
Answer: TITLE: REVERSE ENGINEERING
MALWARECOURSE:FOR610: Reverse Engineering Malware Tools &
Techniques
◍ IRC Exfil.
Answer: Internet Relay Chat old protocol, but some attackers still use it for
control and exfiltration.
◍ GXPN.
Answer: TITLE: EXPLOIT RESEARCHER & ADVANCED
PENETRATION TESTERCOURSE:SEC660: Advanced Pen Testing,
Exploit Writing & Ethical Hacking
◍ GCIH.
Answer: TITLE: CERTIFIED INCIDENT HANDLERCOURSE:SEC504:
Hacker Tools, Techniques, Exploits & Incident Handling
