CS 3113 EXAM QUESTIONS WITH
CORRECT SOLUTIONS||100%
GUARANTEED PASS||UPDATED
2026/2027 SYLLABUS||<<NEWEST
VERSION>>
Which of the following is a slang term for an ethical computer hacker? - ANSWER
✓ A White Hat
Which of the following has the definition: It is the means to evaluate and filter the
payload contents of a communication rather than only on the header values. -
ANSWER ✓ Deep-Packet Inspection
(T/F) Log analysis can be done as a periodic task to detect potential issues before
a major incident. - ANSWER ✓ True
Which of the following is an attack where not only are files are encrypted and you
must pay the attacker for the decryption key, but they also threaten to publish
private information if they aren't paid? - ANSWER ✓ Double Ransomware
(T/F) The #1 protection against ransomware is a combination of network-based
and host-based intrusion detection/prevention systems. - ANSWER ✓ False
Which of the following is an example of free IDS? - ANSWER ✓ SNORT
Which of the following is the "ultimate challenge" in configuring an IDS? -
ANSWER ✓ The ultimate challenge with an IDS is making sure you detect as
many attacks as you can while keeping the number of false positives manageable
Which type of Malware is a program that reproduces by attaching copies of itself
to other programs, often carrying a malicious payload? - ANSWER ✓ Virus
, Which of the following is NOT one of the descriptions of a network-based IDS? -
ANSWER ✓ From its vantage point, a NIDS can detect any intrusive activity on
any of the hosts on the network
Which of the following is NOT one of the ways that a firewall can base its
decision to allow or deny a packet to be transmitted to your network? - ANSWER
✓ All of the above ARE factors that can be considered when filtering packets
A. The type of Internet service
B. The direction of the packet (i.e. inbound or outbound)
C. The user
D. The behavior
There are a number of different ways that a firewall can be implemented. Which
of the following is a method that is used to establish communication sessions
between trusted partners? (An example of this type of firewall would be SOCKS.)
- ANSWER ✓ Circuit level gateway
(T/F) Cyberethics is the philosophic study of ethics pertaining to computers,
encompassing user behavior and what computers are programmed to do, and how
this affects individuals and society. - ANSWER ✓ True
Which of the following terms refers to the attempt to limit the scope of a conflict
and to not let it escalate? - ANSWER ✓ Proportionality
(T/F) When discussing morality and ethics, the two have a very clear distinction
between each other. - ANSWER ✓ False
Which of the following might you expect to find as one of the general moral
imperatives in the ACM Code of Ethics? - ANSWER ✓ All of the Above.
A.
ACM Members should contribute to society and human well-being.
B.
ACM Members should be honest and trustworthy
C.
ACM Members should be fair and take action not to discriminate
D.
ACM members should perform work only in areas of competence
, (T/F) Ethics come from within a person's moral values but laws are made without
consideration of ethical values since individual ethics vary. - ANSWER ✓ False
Which of the following deals with privacy regulations in the Healthcare industry?
- ANSWER ✓ HIPPA
Which of the following did the Computer Fraud and Abuse Act ammend? -
ANSWER ✓ 18 U.S.C. 1030
Which title in the U.S. Code deals with matters such as electronic surveillance and
intelligence oversight? - ANSWER ✓ Title 50
Why does cyberwarfare test the boundaries of existing international laws? -
ANSWER ✓ All of the Above
A.It typically requires the use of civilian infrastructure to conduct attacks.
B.
It provides a powerful asymmetric weapon in the hands of insurrectionists and
guerrillas.
C.
It creates the potential for unrestricted attacks by nontraditional combatants.
What does the Tallinn manual address? - ANSWER ✓ A. It is a study on how
international law applies to cyber conflicts and cyber warfare
(T/F) Probability assessments, which are at the heart of a risk assessment, are what
give the value to results and are based on well-defined figures that list the
probability of various events happening. - ANSWER ✓ False
Which of the following is the correct equation that was provided in the lesson for
calculating risk? - ANSWER ✓ Risk = Probability of harm * Severity of harm
In which of the following is an actual attempt made to gain access to a target
system? - ANSWER ✓ Penetration Test
Which of the following ways to address the management of risk is the most
common and involves the implementation of safeguards, security controls, and
countermeasures to reduce and/or eliminate vulnerabilities or block threats ? -
ANSWER ✓ Mitigation
, (T/F) Risk is a function of the likelihood of a given threat-source's (manmade or
natural) exercising a particular potential vulnerability, and the resulting impact of
that adverse event on the organization. - ANSWER ✓ True
What did the Homeland Security Presidential Directive No. 7 (HSPD-7) do? -
ANSWER ✓ It directed enhanced protection of the nation's critical infrastructures.
(T/F) Most states, including Texas, have few laws addressing cyber security, cyber
crime, or social issues like cyber-bullying. For example, impersonating an
individual (like a classmate) on a social networking site is considered to be socially
unacceptable but is not addressed in a state law. - ANSWER ✓ False
What is the term used to describe a person's change in ethics depending on the
circumstances they are in? - ANSWER ✓ Situational Ethics
Which of the following have been technological features that have been
considered to have ethical issues in the cyber domain that had to be considered? -
ANSWER ✓ All of the above
A. Artificial Intelligence
B. Privacy
C. Intellectual Property
D. Free Speech
Which step in a risk assessment involves determining which of our assets are most
important to our organization? - ANSWER ✓ Criticality Analysis
Which document is used to focus the most time and resources on analyzing the
critical functions first, essential functions second, and so forth in the event of an
incident that impacts the operation of your organization? - ANSWER ✓ Business
Continuity Plan
Which portion of the web contains information that is not indexed by standard
search engine for any reason but may still be accessible using a standard browser
(such as Chrome or Firefox)? - ANSWER ✓ Deep Web
(T/F) Deterrence does not work the same in cyber as in conventional conflict.
Simply identifying the attacker and threatening response is typically not possible.
And even when it is possible, it is only feasible with a cross-domain response.
CORRECT SOLUTIONS||100%
GUARANTEED PASS||UPDATED
2026/2027 SYLLABUS||<<NEWEST
VERSION>>
Which of the following is a slang term for an ethical computer hacker? - ANSWER
✓ A White Hat
Which of the following has the definition: It is the means to evaluate and filter the
payload contents of a communication rather than only on the header values. -
ANSWER ✓ Deep-Packet Inspection
(T/F) Log analysis can be done as a periodic task to detect potential issues before
a major incident. - ANSWER ✓ True
Which of the following is an attack where not only are files are encrypted and you
must pay the attacker for the decryption key, but they also threaten to publish
private information if they aren't paid? - ANSWER ✓ Double Ransomware
(T/F) The #1 protection against ransomware is a combination of network-based
and host-based intrusion detection/prevention systems. - ANSWER ✓ False
Which of the following is an example of free IDS? - ANSWER ✓ SNORT
Which of the following is the "ultimate challenge" in configuring an IDS? -
ANSWER ✓ The ultimate challenge with an IDS is making sure you detect as
many attacks as you can while keeping the number of false positives manageable
Which type of Malware is a program that reproduces by attaching copies of itself
to other programs, often carrying a malicious payload? - ANSWER ✓ Virus
, Which of the following is NOT one of the descriptions of a network-based IDS? -
ANSWER ✓ From its vantage point, a NIDS can detect any intrusive activity on
any of the hosts on the network
Which of the following is NOT one of the ways that a firewall can base its
decision to allow or deny a packet to be transmitted to your network? - ANSWER
✓ All of the above ARE factors that can be considered when filtering packets
A. The type of Internet service
B. The direction of the packet (i.e. inbound or outbound)
C. The user
D. The behavior
There are a number of different ways that a firewall can be implemented. Which
of the following is a method that is used to establish communication sessions
between trusted partners? (An example of this type of firewall would be SOCKS.)
- ANSWER ✓ Circuit level gateway
(T/F) Cyberethics is the philosophic study of ethics pertaining to computers,
encompassing user behavior and what computers are programmed to do, and how
this affects individuals and society. - ANSWER ✓ True
Which of the following terms refers to the attempt to limit the scope of a conflict
and to not let it escalate? - ANSWER ✓ Proportionality
(T/F) When discussing morality and ethics, the two have a very clear distinction
between each other. - ANSWER ✓ False
Which of the following might you expect to find as one of the general moral
imperatives in the ACM Code of Ethics? - ANSWER ✓ All of the Above.
A.
ACM Members should contribute to society and human well-being.
B.
ACM Members should be honest and trustworthy
C.
ACM Members should be fair and take action not to discriminate
D.
ACM members should perform work only in areas of competence
, (T/F) Ethics come from within a person's moral values but laws are made without
consideration of ethical values since individual ethics vary. - ANSWER ✓ False
Which of the following deals with privacy regulations in the Healthcare industry?
- ANSWER ✓ HIPPA
Which of the following did the Computer Fraud and Abuse Act ammend? -
ANSWER ✓ 18 U.S.C. 1030
Which title in the U.S. Code deals with matters such as electronic surveillance and
intelligence oversight? - ANSWER ✓ Title 50
Why does cyberwarfare test the boundaries of existing international laws? -
ANSWER ✓ All of the Above
A.It typically requires the use of civilian infrastructure to conduct attacks.
B.
It provides a powerful asymmetric weapon in the hands of insurrectionists and
guerrillas.
C.
It creates the potential for unrestricted attacks by nontraditional combatants.
What does the Tallinn manual address? - ANSWER ✓ A. It is a study on how
international law applies to cyber conflicts and cyber warfare
(T/F) Probability assessments, which are at the heart of a risk assessment, are what
give the value to results and are based on well-defined figures that list the
probability of various events happening. - ANSWER ✓ False
Which of the following is the correct equation that was provided in the lesson for
calculating risk? - ANSWER ✓ Risk = Probability of harm * Severity of harm
In which of the following is an actual attempt made to gain access to a target
system? - ANSWER ✓ Penetration Test
Which of the following ways to address the management of risk is the most
common and involves the implementation of safeguards, security controls, and
countermeasures to reduce and/or eliminate vulnerabilities or block threats ? -
ANSWER ✓ Mitigation
, (T/F) Risk is a function of the likelihood of a given threat-source's (manmade or
natural) exercising a particular potential vulnerability, and the resulting impact of
that adverse event on the organization. - ANSWER ✓ True
What did the Homeland Security Presidential Directive No. 7 (HSPD-7) do? -
ANSWER ✓ It directed enhanced protection of the nation's critical infrastructures.
(T/F) Most states, including Texas, have few laws addressing cyber security, cyber
crime, or social issues like cyber-bullying. For example, impersonating an
individual (like a classmate) on a social networking site is considered to be socially
unacceptable but is not addressed in a state law. - ANSWER ✓ False
What is the term used to describe a person's change in ethics depending on the
circumstances they are in? - ANSWER ✓ Situational Ethics
Which of the following have been technological features that have been
considered to have ethical issues in the cyber domain that had to be considered? -
ANSWER ✓ All of the above
A. Artificial Intelligence
B. Privacy
C. Intellectual Property
D. Free Speech
Which step in a risk assessment involves determining which of our assets are most
important to our organization? - ANSWER ✓ Criticality Analysis
Which document is used to focus the most time and resources on analyzing the
critical functions first, essential functions second, and so forth in the event of an
incident that impacts the operation of your organization? - ANSWER ✓ Business
Continuity Plan
Which portion of the web contains information that is not indexed by standard
search engine for any reason but may still be accessible using a standard browser
(such as Chrome or Firefox)? - ANSWER ✓ Deep Web
(T/F) Deterrence does not work the same in cyber as in conventional conflict.
Simply identifying the attacker and threatening response is typically not possible.
And even when it is possible, it is only feasible with a cross-domain response.
