ITSY 1342 Final exam 2023 questions and answers with
complete solution
Which of the following is a layer 2 attack?
ARP poisoning
In an interview, you are given the following scenario:
David sent a message to Tina saying, "There is no school today!" For some reason, the
message showed up on
Tina's device as, "Come to the school ASAP!" You (the candidate) are asked to name
the type of attack that
would cause this situation.
Which of the following should you identify?
Man in the Middle
. Which of the following statements about domain reputation is correct?
Domain reputation will be low if the domain is used for distributing malware or launching
attacks
Which of the following best describes VBA?
VBA is an event-driven programming language
Which specific type of attack occurs when a threat actor redirects network traffic by
modifying the local host
file to send legitimate traffic anywhere they choose?
DNS poisoning
As a senior security consultant, which of the following attacks should you mention in the
charge sheet?
Mac Cloning attack
Your enterprise is hosting a web app that has limited security. As a security
administrator, you are asked to
take appropriate measures to restrict threat actors from hijacking users' sessions. Which
of the following is the
most appropriate action for you to take?
You should implement cryptography using OpenSSL
Tyler is a cybersecurity expert assigned to look after the security of a public DNS
server. One day, during his
usual inspection of the DNS server, he found that the DNS table has been altered,
resulting in URL redirection
for some users.
DNS Hijacking
Which of the following best describes trusted location in MS Office?
Trusted location allows you to run macros-enabled files with no security restrictions.
Which of the following best describes bash?
Bash is a command language interpreter.
During an interview, you are provided the following scenario:
The enterprise that you recently joined is using the ISP DNS server to resolve domain
names. You are asked which specific attack will need to be mitigated first to secure the
, enterprise network.
Which of the following attacks should you choose?
DNS Hijacking
Which of the following can prevent macros attacks?
Protected View
Which of the following correctly differentiates between a man-in-the-middle (MITM)
attack and a man-in-
the-browser (MITB)?
A MITM attack occurs between two endpoints, whereas a MITB attack occurs between
a browser
and underlying computer.
You are analyzing the settings for your network's firewall. There is currently a log-only
rule set for the
source address 112.101.2.4. Which of the following has created a log entry in the
firewall?
A rule is set to allow all packets from 112.101.2.1 through 112.101.2.22.
You are asked to configure your firewall in such a way that the traffic from source
address range
117.112.10.25 through 117.112.15.100 is allowed, while traffic from 117.112.12.25
through 117.112.13.25 is
denied, and traffic from 117.112.12.200 through 117.112.13.10 is allowed. How should
you configure the
firewall?
Allow 117.112.10.25 through 117.112.15.100; deny 117.112.12.25 through
117.112.13.25; force-
allow 117.112.12.200 through 117.112.13.10
Which of the following best describes a host-based firewall?
A host-based firewall is a software firewall that protects a single endpoint device.
In an interview, Max was asked to tell one difference between a software firewall and a
virtual firewall.
How should Max answer?
Software firewalls are locally installed on a device, whereas virtual firewalls run in the
cloud.
As a cybersecurity specialist, you are asked to defend the web app hosted by your
enterprise from web
application attacks like cross-site scripting, SQL injections, etc. Which of the following
actions should you
take?
You should install a WAF
Which of the following best describes a network address translation?
A network address translation (NAT) enables a private IP network to connect to the
internet.
Which of the following outlines the process of a proxy server?
User - forward proxy - Internet - reverse proxy - user
Which of the following is a deception instrument?
Sinkhole
complete solution
Which of the following is a layer 2 attack?
ARP poisoning
In an interview, you are given the following scenario:
David sent a message to Tina saying, "There is no school today!" For some reason, the
message showed up on
Tina's device as, "Come to the school ASAP!" You (the candidate) are asked to name
the type of attack that
would cause this situation.
Which of the following should you identify?
Man in the Middle
. Which of the following statements about domain reputation is correct?
Domain reputation will be low if the domain is used for distributing malware or launching
attacks
Which of the following best describes VBA?
VBA is an event-driven programming language
Which specific type of attack occurs when a threat actor redirects network traffic by
modifying the local host
file to send legitimate traffic anywhere they choose?
DNS poisoning
As a senior security consultant, which of the following attacks should you mention in the
charge sheet?
Mac Cloning attack
Your enterprise is hosting a web app that has limited security. As a security
administrator, you are asked to
take appropriate measures to restrict threat actors from hijacking users' sessions. Which
of the following is the
most appropriate action for you to take?
You should implement cryptography using OpenSSL
Tyler is a cybersecurity expert assigned to look after the security of a public DNS
server. One day, during his
usual inspection of the DNS server, he found that the DNS table has been altered,
resulting in URL redirection
for some users.
DNS Hijacking
Which of the following best describes trusted location in MS Office?
Trusted location allows you to run macros-enabled files with no security restrictions.
Which of the following best describes bash?
Bash is a command language interpreter.
During an interview, you are provided the following scenario:
The enterprise that you recently joined is using the ISP DNS server to resolve domain
names. You are asked which specific attack will need to be mitigated first to secure the
, enterprise network.
Which of the following attacks should you choose?
DNS Hijacking
Which of the following can prevent macros attacks?
Protected View
Which of the following correctly differentiates between a man-in-the-middle (MITM)
attack and a man-in-
the-browser (MITB)?
A MITM attack occurs between two endpoints, whereas a MITB attack occurs between
a browser
and underlying computer.
You are analyzing the settings for your network's firewall. There is currently a log-only
rule set for the
source address 112.101.2.4. Which of the following has created a log entry in the
firewall?
A rule is set to allow all packets from 112.101.2.1 through 112.101.2.22.
You are asked to configure your firewall in such a way that the traffic from source
address range
117.112.10.25 through 117.112.15.100 is allowed, while traffic from 117.112.12.25
through 117.112.13.25 is
denied, and traffic from 117.112.12.200 through 117.112.13.10 is allowed. How should
you configure the
firewall?
Allow 117.112.10.25 through 117.112.15.100; deny 117.112.12.25 through
117.112.13.25; force-
allow 117.112.12.200 through 117.112.13.10
Which of the following best describes a host-based firewall?
A host-based firewall is a software firewall that protects a single endpoint device.
In an interview, Max was asked to tell one difference between a software firewall and a
virtual firewall.
How should Max answer?
Software firewalls are locally installed on a device, whereas virtual firewalls run in the
cloud.
As a cybersecurity specialist, you are asked to defend the web app hosted by your
enterprise from web
application attacks like cross-site scripting, SQL injections, etc. Which of the following
actions should you
take?
You should install a WAF
Which of the following best describes a network address translation?
A network address translation (NAT) enables a private IP network to connect to the
internet.
Which of the following outlines the process of a proxy server?
User - forward proxy - Internet - reverse proxy - user
Which of the following is a deception instrument?
Sinkhole
