Skip to content

GIAC Security Essentials

Here you have the best GIAC GSEC practice exam questions

  • Preview the first 5 of 279 questions for free
  • These questions were last updated on June 5, 2026
  • This site is not affiliated with or endorsed by GIAC.
Question 1 of 279

Which of the following are advantages of Network Intrusion Detection Systems (NIDS)?

Answer

Suggested Answer

The suggested answer is C.

Network Intrusion Detection Systems (NIDS) offer several advantages. They provide insight into network traffic, allowing for the monitoring of data as it traverses the network, which aids in identifying unusual patterns or suspicious activities (B). They also help in detecting network operations issues, as they can identify performance-related problems and potential vulnerabilities (D). Finally, NIDS systems can be relatively inexpensive to manage compared to other extensive security measures, making them a cost-effective solution for network security (E). Therefore, the correct answers are B, D, and E.

Question 2 of 279

Which of the following protocols is used by a host that knows its own MAC (Media Access Control) address to query a server for its own IP address?

Answer

Suggested Answer

The suggested answer is A.

The protocol used by a host that knows its own MAC (Media Access Control) address to query a server for its own IP address is RARP (Reverse Address Resolution Protocol). RARP is specifically designed for this purpose, where the host sends a RARP request to a RARP server, which then responds with the host's IP address. ARP (Address Resolution Protocol) works the other way around, translating an IP address into a MAC address. DNS (Domain Name System) translates domain names into IP addresses, and RDNS (Reverse Domain Name System) translates IP addresses into domain names. Therefore, RARP is the only protocol that matches the given scenario.

Question 3 of 279

What is the motivation behind SYN/FIN scanning?

Answer

Suggested Answer

The suggested answer is C.

The crafted SYN/FIN packet sometimes gets past firewalls and filtering routers. SYN/FIN scanning tries to exploit the fact that some firewalls and routers may not properly filter packets with both SYN and FIN flags set, thereby allowing attackers to map out the network and identify open ports.

Community Votes3 votes
CSuggested
100%
Question 4 of 279

There is not universal agreement on the names of the layers in the TCP/IP networking model. Which of the following is one of the functions of the bottom layer which is sometimes called the Network Access or Link Layer?

Answer

Suggested Answer

The suggested answer is D.

The bottom layer of the TCP/IP networking model, often called the Network Access or Link Layer, defines the procedures for interfacing with physical network hardware such as Ethernet devices. Its primary function is to manage the direct connections between different network nodes and handle how data is physically transmitted over the network.

Question 5 of 279

Which of the following is a private, RFC 1918 compliant IP address that would be assigned to a DHCP scope on a private LAN?

Answer

Suggested Answer

The suggested answer is C.

10.254.1.50 is a private IP address according to the RFC 1918 standards. The RFC 1918 address space includes the following networks: 10.0.0.0 – 10.255.255.255, 172.16.0.0 – 172.31.255.255, and 192.168.0.0 – 192.168.255.255. IP addresses within these ranges are designated for private use and are commonly assigned in private LANs through DHCP. 127.0.0.100 falls within the loopback range, 169.254.1.50 is a link-local address not used for private networks, and 172.35.1.100 falls outside the private range designated for the 172.16.0.0 – 172.31.255.255 network.

274 more questions await

Unlock the full GIAC GSEC question bank

5 of 279 completed2%

Choose your plan

One-time payment · No subscription · No hidden fees

Standard

Quick preparation

$25

30 days access

30 day access to all questions
Instant free updates
Highest passing rate in industry
Printable PDF download
No money-back guarantee
Best Value

Premium

Guaranteed success

$60$35

90 days access

PDF

Printable PDF download

New

Save every question as a PDF for offline study or printing.

90 day access to all questions
Instant free updates
Highest passing rate in industry
Pass guaranteed or money back

100% Money-Back Guarantee

Don't pass? Full refund.

4.9/5

Based on 6,008+ reviews

Trusted by thousands of professionals

Join certified professionals who passed their exams with Examice

Examice helped me pass my AWS certification on the first try! The questions were incredibly similar to the real exam. Comments helped me understand answers I was struggling with.
S
Sarah C.
Cloud Engineer
Great results in a short prep time. Passed on my first attempt.
D
David K.
Network Engineer
I needed to pass an exam for work, and this website delivered. The quality for the price is outstanding, and the support is really good. I passed without issues.
M
Michael R.
Security Analyst
Skeptical at first, but impressed. Every question included clear, detailed explanations.
L
Lisa M.
Solutions Architect
The guarantee gave me confidence to invest in the premium package. Turns out I didn't need it. Passed comfortably. The explanations for each answer were incredibly detailed and helped me grasp security concepts that I'd been struggling with for months.
R
Robert H.
Cybersecurity Consultant
Used Examice for my PMP certification. The questions were well structured and covered all exam domains thoroughly.
J
James T.
IT Manager
After failing my first attempt with other study materials, I switched to Examice and passed confidently on my second attempt.
A
Anna W.
Data Engineer
The premium package was worth it. 90 days of access gave me the flexibility to study when it worked for me, without feeling rushed.
E
Emily J.
DevOps Engineer
Straightforward questions that matched the real exam perfectly. Studied for two weeks and passed with a great score.
K
Karen P.
Systems Administrator

Frequently Asked Questions

Everything you need to know. Contact us for more.

Our GIAC GSEC questions are based on real exam experiences and are continuously updated to match the current exam format. Most candidates who study with us report passing on their first attempt, based on a self reported post exam survey.

With our Premium package, you get a 100% money-back guarantee. If you don't pass your exam after studying with our materials, simply contact us with your exam results and we'll refund your purchase. Terms and conditions apply, read our full refund policy to learn more.

Our question bank is updated regularly based on feedback from recent exam takers. We typically review and update our content every week with reports about new questions or changes to the exam format.

Yes. When your access is close to expiring, you can renew it for another 30 days directly from the exam page. If you need more time while you are still preparing, reach out and we will help.

This is a one-time payment with no recurring charges. Once you purchase, you get full access to all exam questions for the duration of your package (30 days for Standard, 90 days for Premium). No hidden fees or automatic renewals.

Pass on your first try

All 279questions · Detailed explanations · Printable PDF · 90 days access

Money-back guaranteeSecure checkout
$35

one-time payment