5/11/25, 9:40 PM GFACT CERTIFICATION EXAM 2025 | ALL QUESTIONS AND CORRECT ANSWERS | VERIFIED ANSWERS | LATEST VERSIO…
GFACT CERTIFICATION EXAM 2025 | ALL
QUESTIONS AND CORRECT ANSWERS |
VERIFIED ANSWERS | LATEST VERSION |
GRADED A+ | JUST RELEASED
Terms in this set (160)
(B2, Pg122) What does it It can run multiple chunks of code concurrently
mean when a computer
program is "multi-
threaded"?
A) It calls multiple external
libraries
B) It has multiple serial
number for different users
C) It can run multiple
chunks of code
concurrently
D) It has multiple functions
defined in the program
… 1/67
,5/11/25, 9:40 PM GFACT CERTIFICATION EXAM 2025 | ALL QUESTIONS AND CORRECT ANSWERS | VERIFIED ANSWERS | LATEST VERSIO…
(B3, Pg162) Which of the Sending a website user's session cookie to an attacker
following is a common
result of a reflected cross-
site scripting attack?
A) Tricking a user into
making an authenticated
transaction
B) Sending a website user's
session cookie to an
attacker
C) Embedding the
attacker's malware in web
application source code
D) Stealing password
hashes from a website's
back end database
HINT It may be under the
session guessing section,
but if you read further into
it, you will see where it
mentions XSS attack.
(B3, Pg90) What tool can Nmap
be used to fingerprint the
operating system of a
host?
A) netstat
B)dig
C)nslookup
D)nmap
… 2/67
,5/11/25, 9:40 PM GFACT CERTIFICATION EXAM 2025 | ALL QUESTIONS AND CORRECT ANSWERS | VERIFIED ANSWERS | LATEST VERSIO…
(B3, Pg151) What type of File Inclusion
vulnerability is illustrated
where there is code in the
web page?
A) File Inclusion
B) Clickjacking
C)Cross-Site Scripting
D) SQL injection
HINT While it doesn't
exactly say "code in the
web page", it mentions
how you can sometimes
view a page that looks like
PHP code and how that
code can gain you access
to the access logs of the
server.
… 3/67
, 5/11/25, 9:40 PM GFACT CERTIFICATION EXAM 2025 | ALL QUESTIONS AND CORRECT ANSWERS | VERIFIED ANSWERS | LATEST VERSIO…
(B3, Pg88-89) An alert Identify services running on network hosts
indicates that a
compromised host was
used by an attacker to run
the command below. What
was the attacker
attempting to do?
$ nmap -sS 192.168.10.0/24
A) Map a network drive to
a remote host
B) Identify services running
on network hosts
C) Execute a script on a
remote host
D) Send Spoofed packets
to network hosts
What type of artifact can a Metadata
blue team member use to
identify the name that is
associated to the file?
A) Metadata
B) Windows security logs
C)Prefetch
D)File Ownership
… 4/67
GFACT CERTIFICATION EXAM 2025 | ALL
QUESTIONS AND CORRECT ANSWERS |
VERIFIED ANSWERS | LATEST VERSION |
GRADED A+ | JUST RELEASED
Terms in this set (160)
(B2, Pg122) What does it It can run multiple chunks of code concurrently
mean when a computer
program is "multi-
threaded"?
A) It calls multiple external
libraries
B) It has multiple serial
number for different users
C) It can run multiple
chunks of code
concurrently
D) It has multiple functions
defined in the program
… 1/67
,5/11/25, 9:40 PM GFACT CERTIFICATION EXAM 2025 | ALL QUESTIONS AND CORRECT ANSWERS | VERIFIED ANSWERS | LATEST VERSIO…
(B3, Pg162) Which of the Sending a website user's session cookie to an attacker
following is a common
result of a reflected cross-
site scripting attack?
A) Tricking a user into
making an authenticated
transaction
B) Sending a website user's
session cookie to an
attacker
C) Embedding the
attacker's malware in web
application source code
D) Stealing password
hashes from a website's
back end database
HINT It may be under the
session guessing section,
but if you read further into
it, you will see where it
mentions XSS attack.
(B3, Pg90) What tool can Nmap
be used to fingerprint the
operating system of a
host?
A) netstat
B)dig
C)nslookup
D)nmap
… 2/67
,5/11/25, 9:40 PM GFACT CERTIFICATION EXAM 2025 | ALL QUESTIONS AND CORRECT ANSWERS | VERIFIED ANSWERS | LATEST VERSIO…
(B3, Pg151) What type of File Inclusion
vulnerability is illustrated
where there is code in the
web page?
A) File Inclusion
B) Clickjacking
C)Cross-Site Scripting
D) SQL injection
HINT While it doesn't
exactly say "code in the
web page", it mentions
how you can sometimes
view a page that looks like
PHP code and how that
code can gain you access
to the access logs of the
server.
… 3/67
, 5/11/25, 9:40 PM GFACT CERTIFICATION EXAM 2025 | ALL QUESTIONS AND CORRECT ANSWERS | VERIFIED ANSWERS | LATEST VERSIO…
(B3, Pg88-89) An alert Identify services running on network hosts
indicates that a
compromised host was
used by an attacker to run
the command below. What
was the attacker
attempting to do?
$ nmap -sS 192.168.10.0/24
A) Map a network drive to
a remote host
B) Identify services running
on network hosts
C) Execute a script on a
remote host
D) Send Spoofed packets
to network hosts
What type of artifact can a Metadata
blue team member use to
identify the name that is
associated to the file?
A) Metadata
B) Windows security logs
C)Prefetch
D)File Ownership
… 4/67
