D484 Penetration 003+ Test Questions Answered Correctly Latest Update 2025-2026
Impacket - Answers An open-source collection of modules written in Python for low level access
to network protocols. Its widely used for lateral movemnet, credential dumping, relay attacks,
and remote command executions.
Scapy - Answers Offers flexibility for crafting custom packets at a lower level.
SMB Relay Attack - Answers Exploits SMB to intercept and relay authentication, gaining
unauthorized access to systems.
Server Message Block (SMB) - Answers A network file sharing protocol that allows computers
to access files and resources on a server over a network.
Port 139 & 445
Packet Crafting - Answers Involves creating custom network packets to test devices, simulate
attacks, or explore vulnerabilities.
Certificate Services - Answers Used to manage digital certificates which are essential for
establishing secure communication through encryption and authentication
Relay Attack - Answers Occurs when an attacker inserts themselves between two
communicating hosts to become part of the conversation
Replay Attack - Answers Occurs when valid data is captured by the attacker and repeated
immediately or delayed and then repeated.
Network Access Control (NAC) - Answers Technology used to keep unauthorized users or
devices from accessing a private network.
Nmap Scripting Engine (NSE) - Answers Allows to automate a lot of different things from
information gathering to vulnerability discovery, using scripts.
Fingerprinting - Answers A technique to get a list of resources on the network, hosts, or system
as a whole to identify potential targets for future attacks.
TCP SYN
-sS - Answers Sends a SYN packet to identify the port state without sending an ACK packet
afterwards.
Service Discovery - Answers Helps determine which network services and operating systems
are in use by a target.
-sI - Answers -TCP idle scan
, -Stealthy
WiGLE.net - Answers A website and database that collects information about wireless networks
form all over the world.
Web Crawlers - Answers Automate the process of discovering directories and files on a web
server.
InSSIDer - Answers A WiFi scanner that visualizes and analyzes wireless networks.
Wireshark - Answers A packet analyzer, which means it captures and displays the data traveling
back and forth on a network in real time
tcpdump - Answers A powerful command line packet analyzer tool used for network traffic
capture and analysis
Censys.io - Answers A cybersecurity company that provides detailed internet intelligence data to
help organizations uncover risks and mitigate threats
Shodan - Answers Search engine for internet-connected devices. IOT's
Amass - Answers An open source tool developed by OWASP for performing in depth DNS
enumeration and mapping out the external assets of a target
DNSDumpster - Answers A free domain research tool that provides information about the DNS
infrastructure of a domain
dig - Answers Flexible tool for getting information from DNS name servers
-Linux
nslookup - Answers A network administration command-line tool for querying the Domain Name
System (DNS) to obtain domain name or IP address mapping or for any other specific DNS
record.
Spiderfoot - Answers An automated reconnaissance tool that gathers a wide range of data
about your target from over 100 public data sources.
Maltego - Answers A powerful data mining tool that provides a graphical interface for linking
and visualizing relationships between different pieces of information.
OSINT framework - Answers A comprehensive directory of tools and resources used for
gathering information from publicly available sources.
Session Tokens - Answers Used to keep users logged into web applications and services
without having to enter their credentials repeatedly
Impacket - Answers An open-source collection of modules written in Python for low level access
to network protocols. Its widely used for lateral movemnet, credential dumping, relay attacks,
and remote command executions.
Scapy - Answers Offers flexibility for crafting custom packets at a lower level.
SMB Relay Attack - Answers Exploits SMB to intercept and relay authentication, gaining
unauthorized access to systems.
Server Message Block (SMB) - Answers A network file sharing protocol that allows computers
to access files and resources on a server over a network.
Port 139 & 445
Packet Crafting - Answers Involves creating custom network packets to test devices, simulate
attacks, or explore vulnerabilities.
Certificate Services - Answers Used to manage digital certificates which are essential for
establishing secure communication through encryption and authentication
Relay Attack - Answers Occurs when an attacker inserts themselves between two
communicating hosts to become part of the conversation
Replay Attack - Answers Occurs when valid data is captured by the attacker and repeated
immediately or delayed and then repeated.
Network Access Control (NAC) - Answers Technology used to keep unauthorized users or
devices from accessing a private network.
Nmap Scripting Engine (NSE) - Answers Allows to automate a lot of different things from
information gathering to vulnerability discovery, using scripts.
Fingerprinting - Answers A technique to get a list of resources on the network, hosts, or system
as a whole to identify potential targets for future attacks.
TCP SYN
-sS - Answers Sends a SYN packet to identify the port state without sending an ACK packet
afterwards.
Service Discovery - Answers Helps determine which network services and operating systems
are in use by a target.
-sI - Answers -TCP idle scan
, -Stealthy
WiGLE.net - Answers A website and database that collects information about wireless networks
form all over the world.
Web Crawlers - Answers Automate the process of discovering directories and files on a web
server.
InSSIDer - Answers A WiFi scanner that visualizes and analyzes wireless networks.
Wireshark - Answers A packet analyzer, which means it captures and displays the data traveling
back and forth on a network in real time
tcpdump - Answers A powerful command line packet analyzer tool used for network traffic
capture and analysis
Censys.io - Answers A cybersecurity company that provides detailed internet intelligence data to
help organizations uncover risks and mitigate threats
Shodan - Answers Search engine for internet-connected devices. IOT's
Amass - Answers An open source tool developed by OWASP for performing in depth DNS
enumeration and mapping out the external assets of a target
DNSDumpster - Answers A free domain research tool that provides information about the DNS
infrastructure of a domain
dig - Answers Flexible tool for getting information from DNS name servers
-Linux
nslookup - Answers A network administration command-line tool for querying the Domain Name
System (DNS) to obtain domain name or IP address mapping or for any other specific DNS
record.
Spiderfoot - Answers An automated reconnaissance tool that gathers a wide range of data
about your target from over 100 public data sources.
Maltego - Answers A powerful data mining tool that provides a graphical interface for linking
and visualizing relationships between different pieces of information.
OSINT framework - Answers A comprehensive directory of tools and resources used for
gathering information from publicly available sources.
Session Tokens - Answers Used to keep users logged into web applications and services
without having to enter their credentials repeatedly
