A penetration tester ran the following Nmap scan on a computer
nmap -sV 192.168.1.5
The organization said it had disabled Telnet from its environment However, the results of the Nmap
scan show port 22 as closed and port 23 as open to SSH Which of the following is the BEST
explanation for what happened?
A penetration tester is performing ARP spoofing against a switch. Which of the following
should the penetration tester spoof to get the MOST information?
MAC address of the client
MAC address of the domain controller
MAC address of the web server
MAC address of the gateway
A penetration tester is designing a phishing campaign and wants to build list of users (or the
target organization. Which of the following techniques would be the MOST appropriate? (Select
A penetration tester observes that several high numbered ports are listening on a public web
server. However, the system owner says the application only uses port 443. Which of the following
would be BEST to recommend?