New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GCIA Exam - Topic 8 Question 22 Discussion

Actual exam question for GIAC's GCIA exam
Question #: 22
Topic #: 8
[All GCIA Questions]

In the DNS Zone transfer enumeration, an attacker attempts to retrieve a copy of the entire zone file for a domain from a DNS server. The information provided by the DNS zone can help an attacker gather user names, passwords, and other valuable information. To attempt a zone transfer, an attacker must be connected to a DNS server that is the authoritative server for that zone. Besides this, an attacker can launch a Denial of Service attack against the zone's DNS servers by flooding them with a lot of requests. Which of the following tools can an attacker use to perform a DNS zone transfer?

Each correct answer represents a complete solution. Choose all that apply.

Show Suggested Answer Hide Answer
Suggested Answer: A, B, C

by Albina at May 03, 2022, 10:33 PM

Limited Time Offer

25%

Off

Get Premium GCIA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Emilio
4 months ago
Wait, can attackers really get passwords from zone files? That's wild!
upvoted 0 times
...
Meaghan
4 months ago
DSniff? Not sure about that one...
upvoted 0 times
...
Catalina
4 months ago
NSLookup works too, right?
upvoted 0 times
...
Ailene
4 months ago
Host is also a solid choice for this!
upvoted 0 times
...
Demetra
5 months ago
You can definitely use Dig for zone transfers.
upvoted 0 times
...
Raul
5 months ago
I practiced using Dig and Host for zone transfers, but I don't remember DSniff being part of our exercises.
upvoted 0 times
...
Susana
5 months ago
I feel like NSLookup is a safe bet for this question, but I might be mixing it up with other tools we discussed.
upvoted 0 times
...
Phyliss
5 months ago
I think Host is definitely one of the tools we used in class for zone transfers, but I can't recall if DSniff was mentioned.
upvoted 0 times
...
Laurel
5 months ago
I remember practicing with Dig and NSLookup for DNS queries, but I'm not entirely sure if both can perform zone transfers.
upvoted 0 times
...
Donette
5 months ago
This question seems straightforward - I just need to identify the one cost reduction benefit that is not listed. I'll carefully read through the options and think about which one doesn't fit.
upvoted 0 times
...
Keva
5 months ago
I think the primary objective of a quality improvement program is to reduce the defect rate in IT products and processes, so I'll go with option B.
upvoted 0 times
...

Save Cancel