Given the following Python script:

Which of the following actions will it perform?

A. ARP spoofing

B. Port scanner

C. Reverse shell

D. Banner grabbing

Given the following:

http://example.com/download.php?id-.../.../.../etc/passwd

Which of the following BEST describes the above attack?

A. Malicious file upload attack

B. Redirect attack

C. Directory traversal attack

D. Insecure direct object reference attack

An organization has requested that a penetration test be performed to determine if it is possible for an attacker to gain a foothold on the organization's server segment. During the assessment, the penetration tester identifies tools that appear to have been left behind by a prior attack. Which of the following actions should the penetration tester take?

A. Attempt to use the remnant tools to achieve persistence.

B. Document the presence of the left-behind tools in the report and proceed with the test.

C. Remove the tools from the affected systems before continuing on with the test.

D. Discontinue further testing and report the situation to management.

The scope of a penetration test requires the tester to be stealthy when performing port scans. Which of the following commands with Nmap BEST supports stealthy scanning?

A. -min-rate

B. -max-length

C. -host-timeout

D. -max-rate

Which of the following is the BEST way to deploy vulnerability scanners with many networks segmented by firewalls with active IPS rules?

A. Deploy a single scanner inside each network segment.

B. Deploy many scanners inside one segment and allow any rules.

C. Deploy one internal scanner and one external scanner.

D. Deploy one internal scanner with heavy server resources.