CySA Practice Exam #5 | Questions with 100%
Correct Answers | Verified | Latest Update 2026
Save
Terms in this set (75)
What techniques are commonly used D.
by port and vulnerability scanners to
identify the services running on a
target system?
A. Comparing response fingerprints
and registry scanning
B. Banner grabbing and UDP
response timing
C. Using the -O option in nmap and
UDP response timing
D. Banner grabbing and comparing
response fingerprints
,You are conducting a static code D.
analysis of a Java program. Consider
the following code snippet: A parameterized query (also known as a prepared
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- statement) is a means of pre-compiling a SQL
=-=-=-=-=-String custname = statement so that all you need to supply are the
request.getParameter("customerNam "parameters" (think "variables") that need to be
e"); inserted into the statement for it to be executed.
String query = "SELECT It's commonly used as a means of preventing SQL
account_balance FROM user_data injection attacks. This code snippet is an example
WHERE user_name = ? of a Java implementation of a parameterized query.
";PreparedStatement pstmt =
connection.prepareStatement( query
);pstmt.setString( 1,
custname);ResultSet results =
pstmt.executeQuery( );
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
=-=-=-=-=-Based on the code above,
what type of secure coding practice
is being used?
A. Input validation
B. Session management
C. Authentication
D. Parameterized queries
,A recent vulnerability scan found C.
several vulnerabilities on an
organization's public-facing IP The most serious vulnerability discovered is one
addresses. To reduce the risk of a that could allow remote code execution to occur.
breach, which of the following Since this buffer overflow vulnerability is known to
vulnerabilities should be prioritized allow remote code execution, it must be mitigated
for remediation? first to prevent a security breach most effectively.
While the other issues should be addressed
A. A cryptographically weak eventually, you need to prioritize the most critical
encryption cipher one (remote code execution) on a public-facing IP
B. A website utilizing a self-signed address. A public-facing IP address means the
SSL certificate device is accessible from the internet.
C. A buffer overflow that is known to
allow remote code execution
D. An HTTP response that reveals an
internal IP address
In which type of attack does the A.
attacker begin with a normal user
account and then seek additional Privilege escalation attacks seek to increase the
access rights? access level that an attacker has to a target system.
Privilege escalation is the act of exploiting a bug,
A. Privilege escalation design flaw, or configuration oversight in an
B. Spear phishing operating system or software application to gain
C. Cross-site Scripting elevated access to resources that are normally
D. Remote code exploitation protected from an application or user.
, A penetration tester is using a known B.
vulnerability to compromise an
Apache webserver. After they gain Apache web servers are run as a limited user by
access to the server, what is their default, not as an administrative or root account. To
next step to pivot to a protected be efficient and effective, the penetration tester
system behind the DMZ? should attempt to conduct a privilege escalation
before pivoting into the DMZ.
A. Vulnerability scanning
B. Privilege escalation
C. Patching
D. Installing additional tools
Which type of threat actor can A.
accidentally or inadvertently cause
a security incident in your An insider threat is a type of threat actor assigned
organization? privileges on the system that cause an intentional
or unintentional incident. Insider threats can be
A. Insider threat used as unwitting pawns of external organizations
B. Hacktivist or make crucial mistakes that can open up
C. Organized Crime exploitable security vulnerabilities.
D. APT
Correct Answers | Verified | Latest Update 2026
Save
Terms in this set (75)
What techniques are commonly used D.
by port and vulnerability scanners to
identify the services running on a
target system?
A. Comparing response fingerprints
and registry scanning
B. Banner grabbing and UDP
response timing
C. Using the -O option in nmap and
UDP response timing
D. Banner grabbing and comparing
response fingerprints
,You are conducting a static code D.
analysis of a Java program. Consider
the following code snippet: A parameterized query (also known as a prepared
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- statement) is a means of pre-compiling a SQL
=-=-=-=-=-String custname = statement so that all you need to supply are the
request.getParameter("customerNam "parameters" (think "variables") that need to be
e"); inserted into the statement for it to be executed.
String query = "SELECT It's commonly used as a means of preventing SQL
account_balance FROM user_data injection attacks. This code snippet is an example
WHERE user_name = ? of a Java implementation of a parameterized query.
";PreparedStatement pstmt =
connection.prepareStatement( query
);pstmt.setString( 1,
custname);ResultSet results =
pstmt.executeQuery( );
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
=-=-=-=-=-Based on the code above,
what type of secure coding practice
is being used?
A. Input validation
B. Session management
C. Authentication
D. Parameterized queries
,A recent vulnerability scan found C.
several vulnerabilities on an
organization's public-facing IP The most serious vulnerability discovered is one
addresses. To reduce the risk of a that could allow remote code execution to occur.
breach, which of the following Since this buffer overflow vulnerability is known to
vulnerabilities should be prioritized allow remote code execution, it must be mitigated
for remediation? first to prevent a security breach most effectively.
While the other issues should be addressed
A. A cryptographically weak eventually, you need to prioritize the most critical
encryption cipher one (remote code execution) on a public-facing IP
B. A website utilizing a self-signed address. A public-facing IP address means the
SSL certificate device is accessible from the internet.
C. A buffer overflow that is known to
allow remote code execution
D. An HTTP response that reveals an
internal IP address
In which type of attack does the A.
attacker begin with a normal user
account and then seek additional Privilege escalation attacks seek to increase the
access rights? access level that an attacker has to a target system.
Privilege escalation is the act of exploiting a bug,
A. Privilege escalation design flaw, or configuration oversight in an
B. Spear phishing operating system or software application to gain
C. Cross-site Scripting elevated access to resources that are normally
D. Remote code exploitation protected from an application or user.
, A penetration tester is using a known B.
vulnerability to compromise an
Apache webserver. After they gain Apache web servers are run as a limited user by
access to the server, what is their default, not as an administrative or root account. To
next step to pivot to a protected be efficient and effective, the penetration tester
system behind the DMZ? should attempt to conduct a privilege escalation
before pivoting into the DMZ.
A. Vulnerability scanning
B. Privilege escalation
C. Patching
D. Installing additional tools
Which type of threat actor can A.
accidentally or inadvertently cause
a security incident in your An insider threat is a type of threat actor assigned
organization? privileges on the system that cause an intentional
or unintentional incident. Insider threats can be
A. Insider threat used as unwitting pawns of external organizations
B. Hacktivist or make crucial mistakes that can open up
C. Organized Crime exploitable security vulnerabilities.
D. APT
