Scribd
Upload
6K views9 pages

Ejpt Dummp

Uploaded by

Alee Alee
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
6K views9 pages

Ejpt Dummp

Uploaded by

Alee Alee
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd

What is the IP address of the host running WordPress?

192.168.100.54

192.168.100.50*

192.168.100.51

192.168.100.52

What is the IP address of the host running SAMBA? 139 445

192.168.100.50

192.168.100.52

192.168.100.51

192.168.100.54

How many hosts on the DMZ network are running a database


server?

2*

What version of MySQL is running on the system hosting a Drupal


site?
MySQL 5.5.3

MySQL 5.5.10

MySQL 5.5.0

MySQL 5.5.5 *

What version of Windows is running on the host running


WordPress?

Windows Server 2012 R2 *

Windows Server 2016

Windows 10

Windows 7 SP3

What is the name of the user account that published a blog post on
the Drupal site?

auditor *

admin

vincenzo

mike

What is the email of the admin user on the Drupal site?

[email protected]

[email protected] *

[email protected]

[email protected]

What is the name of the active theme on the WordPress site?


TwentyNineteen

Burgertheme

BizPress

Spintech *

What is the IP address of the host vulnerable to an SSH brute-force


attack?

192.168.100.54

192.168.100.52

192.168.100.50

192.168.100.51

What is the IP address of the FTP server that contains a file called
updates.txt?

192.168.100.52

192.168.100.50

192.168.100.54

192.168.100.51

What type of vulnerability can be exploited on the Drupal site?

Shellshock

RCE *

Buffer Overflow

Command Injection
What type of vulnerability can be exploited to gain access to
WINSERVER-03?

Buffer Overflow

EternalBlue

Command Injection

SMB Brute Force *

What type of vulnerability can be exploited on the WordPress site to


obtain a reverse shell?

Command Injection

RCE *

SQL Injection

Arbitrary File Upload

How many hosts exist within the internal network that cannot be
accessed through the DMZ network?

2*

Which one of the following meterpreter commands can be used to


add a network route?

arp
netstat

autoroute *

route

One of the Linux servers in the internal network is running a


vulnerable service. What port is the vulnerable service running on?

22

80 *

3389

10000

What is the password of the user account "dbadmin" on the Linux


server hosting Drupal?

vincenzzo

sayang *

syntex6061

qwertyuiop

A target system has a user account called "lawrence". What is the


password for this account?

blanca

vincenzzo

computadora *

lw9875

What is the password for the user "mike" on WINSERVER-01?


greenday

superman

bonita

diamond *

What is the name of the vulnerable web app running on the Linux
server in the internal network?

Jenkins

phpMyAdmin

Apache Tomcat

Webmin *

What is the CVSS V3.x rating for the Drupalgeddon2 vulnerability?

7.7

8.1

8.5

9.8 *

What file can be used to identify the version of Drupal running on a


webserver?

config.php

reports.txt

settings.php

changelog.txt *

What is the password for the "admin" user account on WordPress?


superman

How many plugins are installed on the WordPress site?

3*

What version of WordPress is running on WINSERVER-01?

5.5.9

5.6.1

5.9.1

5.9.3 *

What WordPress file stores the database configuration?

wp-admin.php

phpconfig.php

wp-config.php *

config.php

What is the root password of the MySQL database on the server


running Drupal? syntex0421
Excluding the guest account, how many user accounts are present
on WINSERVER-01?

4*

What host in the DMZ network is running a web server with


WebDAV enabled?

192.168.100.53

192.168.100.50

192.168.100.52

192.168.100.51 *

What host on the network contains a user account called


"lawrence"?

WINSERVER-01

WINSERVER-02

WEBSERVER-02

WINSERVER-03 *

What is the hashing algorithm used to hash user account


passwords on both Linux servers?
SHA-512 *

MD4

SHA-256

MD5

You might also like