1. Home
  2. GIAC Certification
  3. GCIH Exam
  4. GIAC.GCIH.v2022-05-20.q253 Practice Test

Question 136

John works as a professional Ethical Hacker. He has been assigned a project to test the security of www.we- are-secure.com. On the We-are-secure login page, he enters ='or''=' as a username and successfully logs in to the user page of the Web site.
The we-are-secure login page is vulnerable to a __________.

    • Question 137

    You check performance logs and note that there has been a recent dramatic increase in the amount of broadcast traffic. What is this most likely to be an indicator of?

    • Question 138

    Which of the following tools will you use to prevent from session hijacking?
    Each correct answer represents a complete solution. Choose all that apply.

    • Question 139

    Brutus is a password cracking tool that can be used to crack the following authentications:
    l HTTP (Basic Authentication)
    l HTTP (HTML Form/CGI)
    l POP3 (Post Office Protocol v3)
    l FTP (File Transfer Protocol)
    l SMB (Server Message Block)
    l Telnet
    Which of the following attacks can be performed by Brutus for password cracking?
    Each correct answer represents a complete solution. Choose all that apply.

    • Question 140

    Which of the following nmap command parameters is used for TCP SYN port scanning?
    • Other Version
    2640GIAC.GCIH.v2023-05-20.q267
    2532GIAC.GCIH.v2022-09-14.q140
    47GIAC.Actualtestpdf.GCIH.v2022-01-04.by.scott.216q.pdf
    Latest Upload
    159Huawei.H12-811_V1.0.v2025-10-02.q205
    139PMI.PfMP.v2025-10-02.q265
    127EMC.D-NWR-DY-01.v2025-10-02.q145
    150Salesforce.Public-Sector-Solutions.v2025-10-01.q106
    131Microsoft.SC-300.v2025-10-01.q358
    108Snowflake.DSA-C03.v2025-10-01.q105
    111Fortinet.NSE7_SDW-7.2.v2025-10-01.q108
    123Scrum.PAL-I.v2025-09-30.q47
    127SAP.C-C4H22-2411.v2025-09-30.q28
    150LinuxFoundation.CKAD.v2025-09-29.q102