Ethical Hacking and Network Defense Exam with Verified Solutions 2024

Ethical Hacking and Network Defense Exam with Verified Solutions 2024 The remote file system protocol CIFS replaced SMB in Windows 2000 Server and later. - Answer -True SELinux can detect rootkits on *nix systems. - Answer -False When using the Common Internet File System (CIFS), the User-level security model requires a username and password be set for the file share. - Answer -True WSUS is a Windows client/server technology used to manage patching and updating systems software from the network. - Answer -True The most serious security shortcoming of Microsoft's original File Allocation Table (FAT) file system is it has no built-in compression. - Answer -False Windows patch and update service - Answer -WSUS Debian package manager - Answer -apt-get Linux OS security mechanism - Answer -SELinux Red Hat/Fedora RPM Package Manager - Answer -yum Open-source CIFS implementation - Answer -Samba Which of the following is a common Linux rootkit? - Answer -Linux Rootkit 5 Which of the following protocols does NetBios use to access a network resource? - Answer -NetBEUI Which of the following is considered to be the most critical SQL vulnerability? - Answer -Null SA password A vulnerability manager shows a report on Debian applications which are susceptible to a buffer overflow attack. What command will update and manage their RPM packages? - Answer -apt-get An attacker has successfully compromised a user's workstation, but they want to try to trick an administrator into connecting to a user's share drive in order to intercept the credentials. What tool should they use to accomplish this objective? - Answer -SMBRelay For a Windows computer to be able to access a *nix resource, which of the following must be enabled on both systems? - Answer -CIFSA Linux administrator wants to share files between Windows and Linux servers. What protocol should they use? - Answer -Samba What critical component of any OS, that can be vulnerable to attacks, is used to store and manage information? - Answer -File system What does a Windows environment use to locate resources in a domain containing thousands or even millions of objects? - Answer -GC How should a security analyst review system generated events for signs of intrusion or other problems on the network? - Answer -Log monitoring tool False - Answer -The botnet worm psyb0t targeted an Embedded web server weakness. True - Answer -If a cloud administrator is setting up management for devices in a SCADA network and wants to manage them through Microsoft Graph, they should use Windows 10 IoT to be the most compatible. True - Answer -An RTOS is a specialized type of embedded OS that is typically used in devices such as programmable thermostats, appliance controls, and even spacecraft. False - Answer -Once the OS is reinstalled, BIOS-based rootkits are unable to access the system at a later date. False - Answer -Unpatched vulnerabilities are usually the biggest security threat to an organization. Microkernel - Answer -OS uses fewer hardware resources Conficker - Answer -Targeted unpatched medical systems Y2K - Answer -Potential millennium software flaw CE - Answer -Trimmed down version of Windows OS SCADA - Answer -Offers monitoring and automation NOT Micro - Answer -When designing sensitive embedded systems that need only a fraction of the features offered by other kernels, there are risks for vulnerabilities that might outweigh the benefits.