New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

GIAC GPEN Exam - Topic 4 Question 13 Discussion

Actual exam question for GIAC's GPEN exam
Question #: 13
Topic #: 4
[All GPEN Questions]

Which of the following penetration testing phases involves gathering data from whois, DNS, and network scanning, which helps in mapping a target network and provides valuable information regarding the operating system and applications running on the systems?

Show Suggested Answer Hide Answer
Suggested Answer: D

by Lavonna at May 05, 2022, 01:27 AM

Limited Time Offer

25%

Off

Get Premium GPEN Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Devorah
4 months ago
I thought it was the Attack phase at first, but Pre-attack makes more sense.
upvoted 0 times
...
Wilbert
4 months ago
Nope, it's not the Post-attack phase, that's for sure.
upvoted 0 times
...
Elbert
4 months ago
Wait, is there really an "On-attack phase"? Sounds weird.
upvoted 0 times
...
Dalene
4 months ago
Totally agree, it's all about gathering intel first.
upvoted 0 times
...
Jaime
5 months ago
That's definitely the Pre-attack phase!
upvoted 0 times
...
Refugia
5 months ago
I’m a bit confused; I thought the attack phase also involved some reconnaissance, but now I’m leaning towards pre-attack for this one.
upvoted 0 times
...
Dick
5 months ago
I remember practicing a question similar to this, and I think it was definitely about mapping the network, which sounds like pre-attack to me.
upvoted 0 times
...
Lon
5 months ago
I think the phase where we gather data like whois and DNS info is the pre-attack phase, but I'm not entirely sure.
upvoted 0 times
...
Alexia
5 months ago
I feel like the post-attack phase is more about analyzing the results, so it must be pre-attack where we gather that initial data.
upvoted 0 times
...
Serita
5 months ago
Okay, let's see. Since the question mentions a cloned credit card with personal information, I'm guessing this would fall under the "digital" category of data breaches. I'll go with that.
upvoted 0 times
...
Cecilia
5 months ago
Hmm, this is a tricky one. I need to make sure I don't just go for the most expensive or resilient option, but really consider how the SVAs are intended to be used. I'll read the question and answers closely.
upvoted 0 times
...
Dahlia
5 months ago
This seems like a good opportunity to demonstrate my understanding of HTML5 audio features and browser compatibility. I'm feeling confident about this one.
upvoted 0 times
...

Save Cancel