CMIT 320 Final Exam Latest Update 2025-2026
Actual Exam 200 Questions with 100% Verified
Correct Answers Guaranteed A+ Verified by
Professor
a binary file format found mainly in Java environments - CORRECT ANSWER: DER
A company configures workstations only to run software on an approved list. What is
this an example of? - CORRECT ANSWER: allow listing
A company decides to invest in embedded systems to improve security by limiting the
number of components used in various critical and sensitive systems. Which of the
following would make it more difficult to justify embedded systems in certain cases?
This task contains the radio buttons and checkboxes for options. Press the enter key to
select the option. option A - CORRECT ANSWER: the wireless networking range
a format for sharing and archiving certificates without the private key - CORRECT
ANSWER: P7B
a framework for enterprise risk management - CORRECT ANSWER: 31000
a knowledge base of adversary techniques presented as a matrix for enterprise -
CORRECT ANSWER: mitre att&ck
a linear seven step attack model that defenders use to interrupt the steps and stop the
attack - CORRECT ANSWER: cyber kill chain
A manufacturer that relies on purchasing various components for the fabrication of their
finished products made the decision to work only with suppliers that use a particular
blockchain solution to track individual items along the supply chain. What is the key
feature of a private blockchain that assures the manufacturer that the status
,transformation of any given component along its journey cannot be forged or corrupted,
ensuring all status updates are verified accurately? - CORRECT ANSWER: the public
ledger
A network technician has been asked to troubleshoot recently observed performance
issues as well as the root cause of new alerts regarding network traffic anomalies.
Which monitoring tool should the technician choose first to troubleshoot both problems?
- CORRECT ANSWER: bandwidth monitor
A secure records room installed a new iris scanner, chosen for its low crossover error
rate. What does that mean it has? - CORRECT ANSWER: Low FRR (false rejection
rate) & low FAR (false acceptance rate)
A security program alerts you of a failed login attempt to a secure system. On
investigation, you learn the system's regular user accidentally had caps lock turned on.
What kind of alert was it? - CORRECT ANSWER: false positive
A user complains that after entering a URL into a browser, what appeared to be the
correct page is displayed in the browser. However, after clicking a few links on the page,
it became obvious that the site the user arrived at was not the correct site, but instead a
malicious copy of the site the user intended to visit. Which of the following attacks did
the user most likely fall prey to? - CORRECT ANSWER: typosquatting
A user complains that every time they open their Internet browser, it no longer goes to
their preferred home page, and advertisements pop up in dialog boxes that they have to
close. What is the likely cause? - CORRECT ANSWER: spyware
a very popular Base-64 ASCII-encoded file format - CORRECT ANSWER: PEM
ACLs that are secure by default are based on which assumption? - CORRECT
ANSWER: implicit deny
, After a security incident, you rush to take a screenshot of a telltale running process
before you leisurely take a backup of suspicious files on the hard drive. What forensic
principle are you exercising? - CORRECT ANSWER: Order of Volatility
After finishing a full antimalware scan on all drives in a server, a technician is convinced
an infection of some sort persists. Which of the following malware variants would have
evaded the scan that was performed? - CORRECT ANSWER: fileless virus
After having trouble navigating to a webpage on the Internet, resulting in a privacy error,
you inspect the site's certificate and notice the chain of certificates contains three
nodes, one being the leaf certificate of the site you are attempting to reach. You inspect
the root certificate and find that your operating system stores an exact match for it
locally and, therefore, it and your browser trust it explicitly. Which of the following
actions might solve the problem you are facing? - CORRECT ANSWER: install the
certificate of the intermediate CA
Also known as after-action meetings and reports, what alternate name for these bears
evidence to the importance of discussing and documenting the outcome of an incident
response-team activation? - CORRECT ANSWER: lessons learned
Among the options listed, which mitigation technique is known most for increasing
security at the expense of flexibility? - CORRECT ANSWER: whitelisting
An administrator has created two EC2 instances in an AWS VPC. Noticing that the
default behavior of the instances is to allow full communication between them, the
administrator investigates ways to control their interaction with one another. What option
best supports the interests of the administrator? - CORRECT ANSWER: Using non-
standard security groups
An administrator sets up a new virtualization server with virtual machines intended to
run instances of a web-based application while following secure configuration guides
from CIS for the operating system, hypervisor, webserver, and application server. What
can the administrator use to confirm that all efforts to secure these components were
Actual Exam 200 Questions with 100% Verified
Correct Answers Guaranteed A+ Verified by
Professor
a binary file format found mainly in Java environments - CORRECT ANSWER: DER
A company configures workstations only to run software on an approved list. What is
this an example of? - CORRECT ANSWER: allow listing
A company decides to invest in embedded systems to improve security by limiting the
number of components used in various critical and sensitive systems. Which of the
following would make it more difficult to justify embedded systems in certain cases?
This task contains the radio buttons and checkboxes for options. Press the enter key to
select the option. option A - CORRECT ANSWER: the wireless networking range
a format for sharing and archiving certificates without the private key - CORRECT
ANSWER: P7B
a framework for enterprise risk management - CORRECT ANSWER: 31000
a knowledge base of adversary techniques presented as a matrix for enterprise -
CORRECT ANSWER: mitre att&ck
a linear seven step attack model that defenders use to interrupt the steps and stop the
attack - CORRECT ANSWER: cyber kill chain
A manufacturer that relies on purchasing various components for the fabrication of their
finished products made the decision to work only with suppliers that use a particular
blockchain solution to track individual items along the supply chain. What is the key
feature of a private blockchain that assures the manufacturer that the status
,transformation of any given component along its journey cannot be forged or corrupted,
ensuring all status updates are verified accurately? - CORRECT ANSWER: the public
ledger
A network technician has been asked to troubleshoot recently observed performance
issues as well as the root cause of new alerts regarding network traffic anomalies.
Which monitoring tool should the technician choose first to troubleshoot both problems?
- CORRECT ANSWER: bandwidth monitor
A secure records room installed a new iris scanner, chosen for its low crossover error
rate. What does that mean it has? - CORRECT ANSWER: Low FRR (false rejection
rate) & low FAR (false acceptance rate)
A security program alerts you of a failed login attempt to a secure system. On
investigation, you learn the system's regular user accidentally had caps lock turned on.
What kind of alert was it? - CORRECT ANSWER: false positive
A user complains that after entering a URL into a browser, what appeared to be the
correct page is displayed in the browser. However, after clicking a few links on the page,
it became obvious that the site the user arrived at was not the correct site, but instead a
malicious copy of the site the user intended to visit. Which of the following attacks did
the user most likely fall prey to? - CORRECT ANSWER: typosquatting
A user complains that every time they open their Internet browser, it no longer goes to
their preferred home page, and advertisements pop up in dialog boxes that they have to
close. What is the likely cause? - CORRECT ANSWER: spyware
a very popular Base-64 ASCII-encoded file format - CORRECT ANSWER: PEM
ACLs that are secure by default are based on which assumption? - CORRECT
ANSWER: implicit deny
, After a security incident, you rush to take a screenshot of a telltale running process
before you leisurely take a backup of suspicious files on the hard drive. What forensic
principle are you exercising? - CORRECT ANSWER: Order of Volatility
After finishing a full antimalware scan on all drives in a server, a technician is convinced
an infection of some sort persists. Which of the following malware variants would have
evaded the scan that was performed? - CORRECT ANSWER: fileless virus
After having trouble navigating to a webpage on the Internet, resulting in a privacy error,
you inspect the site's certificate and notice the chain of certificates contains three
nodes, one being the leaf certificate of the site you are attempting to reach. You inspect
the root certificate and find that your operating system stores an exact match for it
locally and, therefore, it and your browser trust it explicitly. Which of the following
actions might solve the problem you are facing? - CORRECT ANSWER: install the
certificate of the intermediate CA
Also known as after-action meetings and reports, what alternate name for these bears
evidence to the importance of discussing and documenting the outcome of an incident
response-team activation? - CORRECT ANSWER: lessons learned
Among the options listed, which mitigation technique is known most for increasing
security at the expense of flexibility? - CORRECT ANSWER: whitelisting
An administrator has created two EC2 instances in an AWS VPC. Noticing that the
default behavior of the instances is to allow full communication between them, the
administrator investigates ways to control their interaction with one another. What option
best supports the interests of the administrator? - CORRECT ANSWER: Using non-
standard security groups
An administrator sets up a new virtualization server with virtual machines intended to
run instances of a web-based application while following secure configuration guides
from CIS for the operating system, hypervisor, webserver, and application server. What
can the administrator use to confirm that all efforts to secure these components were
