___________ Is a set of extensions to DNS that provide to DNS clients (resolvers)
origin authentication of DNS
data to reduce the threat of DNS poisoning, spoofing, and similar attacks types. -
Answer-DNSSEC
A common cryptographical tool is the use of XOR. XOR the following binary values:
10110001
00111010 - Answer-10001011
A company's security policy states that all Web browsers must automatically delete their
HTTP browser
cookies upon terminating. What sort of security breach is the policy attempting to
mitigate? - Answer-Attempts by attackers to determine the user's web browser usage
patterns, including when sites were
visited and for how long.
A company's Web development team has become aware of a certain type of security
vulnerability in their Web
software. To mitigate the possibility of this vulnerability being exploited, the team wants
to modify the software
requirements to disallow users from entering HTML as input into their Web application.
What kind of Web application vulnerability likely exists in their software? - Answer-
Cross-site scripting vulnerability
A hacker gained access to database with logins and hashed passwords. To speed up
cracking these
passwords the best method would be: - Answer-Rainbow tables
A hacker has successfully infected an internet-facing server which he will then use to
send junk mail, take part
in coordinated attacks, or host junk email content.
Which sort of trojan infects this server? - Answer-Botnet Trojan
A hacker is an intelligent individual with excellent computer skills that grant them the
ability to explore a
computer's software and hardware without the owner's permission. Their intention can
either be to simply gain
knowledge or to illegally make changes. Which of the following class of hacker refers to
individual who work
both offensively and defensively at various times? - Answer-Gray Hat
,A hacker named Jack is trying to compromise a bank's computer system. He needs to
know the operating
system of that computer to launch further attacks.
What process would help him? - Answer-Banner Grabbing
A medium-sized healthcare IT business decides to implement a risk management
strategy.
Which of the following is NOT one of the five basic responses to risk? - Answer-
Delegate
A network administrator discovers several unknown files in the root directory of his
Linux FTP server. One of
the files is a tarball, two are shell script files, and the third is a binary file is named "nc".
The FTP server's
access logs show that the anonymous user account logged into the server, uploaded
the files, and extracted
the contents of the tarball and ran the script using a function provided by the FTP
server' software. The ps
command shows that the nc file is running as process, and the netstat command shows
the nc process is
listening on a network port.
What kind of vulnerability must be present to make this remote attack possible? -
Answer-File system permissions
A new wireless client is configured to join a 802.11 network. The client uses the same
hardware and software
is many of the other clients on the network. The client can see the network, but cannot
connect. A wireless
packet sniffer shows that the wireless access point (WAP) is not responding to the
association requests being
sent by the wireless client.
What is a possible source of this problem? - Answer-The WAP does not recognize the
clients MAC address
A new wireless client is configured to join a 802.11 network. This client uses the same
hardware and software
as many of the other clients on the network. The client can see the network, but cannot
connect. A wireless
packet sniffer shows that the Wireless Access Point (WAP) is not responding to the
association requests being
sent by the wireless client.
What is possible source of the problem? - Answer-The WAP does not recognize the
client's MAC address
A penetration tester is conducting a port scan on a specific host. The tester found
several ports opened that
, were confusing in concluding the OS version installed. Considering the NMAP result
below, which of the
following is likely to be installed on the target machine by the OS? Starting NMAP 5.21
at 2011-03-15 11:06
NMAP scan report for 172.16.40.65 Host is up (1.00s latency). Not shown: 993 closed
ports PORT STATE
SERVICE 21/tcp open ftp 23/tcp open telnet 80/tcp open http 139/tcp open netbios-ssn
515/tcp open 631/tcp
open ipp 9100/tcp open MAC Address: 00:00:48:0D:EE:8 - Answer-The host is likely a
printer.
A regional bank hires your company to perform a security assessment on their network
after a recent data
breach. The attacker was able to steal financial data from the bank by compromising
only a single server. - Answer-Place a front-end web server in a demilitarized zone that
only handles external web traffic.
A tester has been hired to do a web application security test. The tester notices that the
site is dynamic and
must make use of a back end database. In order for the tester to see if SQL injection is
possible, what is the
first character that the tester should use to attempt breaking a valid SQL request? -
Answer-Single quote
A virus that attempts to install itself inside of the file it is infecting is called ? - Answer-
Cavity virus
Alice encrypts her data using her public key PK and stores the encrypted data in the
cloud. Which of the
following attack scenarios will compromise the privacy of her data? - Answer-Alice also
stores her private key in the cloud, and Harry breaks into the cloud server as before
An attacker changes the profile information of a particular user on a target website (the
victim). The attacker
uses this string to update the victim's profile to a text file and then submit the data to the
attackers database.
<iframe src="http://www.vulnweb.com/updateif.php" style='display:none"> </iframe>
What is this type of attack (that can use either HTTP GET or HTTP POST) called? -
Answer-Cross-Site Scripting
An attacker gains access to a web server's database and displays the contents of the
table that holds all of the
names, passwords, and other user information. The attacker did this by entering
information into the website's
user login page that the software's designers did not expect to be entered. This is an
example of what kind of
origin authentication of DNS
data to reduce the threat of DNS poisoning, spoofing, and similar attacks types. -
Answer-DNSSEC
A common cryptographical tool is the use of XOR. XOR the following binary values:
10110001
00111010 - Answer-10001011
A company's security policy states that all Web browsers must automatically delete their
HTTP browser
cookies upon terminating. What sort of security breach is the policy attempting to
mitigate? - Answer-Attempts by attackers to determine the user's web browser usage
patterns, including when sites were
visited and for how long.
A company's Web development team has become aware of a certain type of security
vulnerability in their Web
software. To mitigate the possibility of this vulnerability being exploited, the team wants
to modify the software
requirements to disallow users from entering HTML as input into their Web application.
What kind of Web application vulnerability likely exists in their software? - Answer-
Cross-site scripting vulnerability
A hacker gained access to database with logins and hashed passwords. To speed up
cracking these
passwords the best method would be: - Answer-Rainbow tables
A hacker has successfully infected an internet-facing server which he will then use to
send junk mail, take part
in coordinated attacks, or host junk email content.
Which sort of trojan infects this server? - Answer-Botnet Trojan
A hacker is an intelligent individual with excellent computer skills that grant them the
ability to explore a
computer's software and hardware without the owner's permission. Their intention can
either be to simply gain
knowledge or to illegally make changes. Which of the following class of hacker refers to
individual who work
both offensively and defensively at various times? - Answer-Gray Hat
,A hacker named Jack is trying to compromise a bank's computer system. He needs to
know the operating
system of that computer to launch further attacks.
What process would help him? - Answer-Banner Grabbing
A medium-sized healthcare IT business decides to implement a risk management
strategy.
Which of the following is NOT one of the five basic responses to risk? - Answer-
Delegate
A network administrator discovers several unknown files in the root directory of his
Linux FTP server. One of
the files is a tarball, two are shell script files, and the third is a binary file is named "nc".
The FTP server's
access logs show that the anonymous user account logged into the server, uploaded
the files, and extracted
the contents of the tarball and ran the script using a function provided by the FTP
server' software. The ps
command shows that the nc file is running as process, and the netstat command shows
the nc process is
listening on a network port.
What kind of vulnerability must be present to make this remote attack possible? -
Answer-File system permissions
A new wireless client is configured to join a 802.11 network. The client uses the same
hardware and software
is many of the other clients on the network. The client can see the network, but cannot
connect. A wireless
packet sniffer shows that the wireless access point (WAP) is not responding to the
association requests being
sent by the wireless client.
What is a possible source of this problem? - Answer-The WAP does not recognize the
clients MAC address
A new wireless client is configured to join a 802.11 network. This client uses the same
hardware and software
as many of the other clients on the network. The client can see the network, but cannot
connect. A wireless
packet sniffer shows that the Wireless Access Point (WAP) is not responding to the
association requests being
sent by the wireless client.
What is possible source of the problem? - Answer-The WAP does not recognize the
client's MAC address
A penetration tester is conducting a port scan on a specific host. The tester found
several ports opened that
, were confusing in concluding the OS version installed. Considering the NMAP result
below, which of the
following is likely to be installed on the target machine by the OS? Starting NMAP 5.21
at 2011-03-15 11:06
NMAP scan report for 172.16.40.65 Host is up (1.00s latency). Not shown: 993 closed
ports PORT STATE
SERVICE 21/tcp open ftp 23/tcp open telnet 80/tcp open http 139/tcp open netbios-ssn
515/tcp open 631/tcp
open ipp 9100/tcp open MAC Address: 00:00:48:0D:EE:8 - Answer-The host is likely a
printer.
A regional bank hires your company to perform a security assessment on their network
after a recent data
breach. The attacker was able to steal financial data from the bank by compromising
only a single server. - Answer-Place a front-end web server in a demilitarized zone that
only handles external web traffic.
A tester has been hired to do a web application security test. The tester notices that the
site is dynamic and
must make use of a back end database. In order for the tester to see if SQL injection is
possible, what is the
first character that the tester should use to attempt breaking a valid SQL request? -
Answer-Single quote
A virus that attempts to install itself inside of the file it is infecting is called ? - Answer-
Cavity virus
Alice encrypts her data using her public key PK and stores the encrypted data in the
cloud. Which of the
following attack scenarios will compromise the privacy of her data? - Answer-Alice also
stores her private key in the cloud, and Harry breaks into the cloud server as before
An attacker changes the profile information of a particular user on a target website (the
victim). The attacker
uses this string to update the victim's profile to a text file and then submit the data to the
attackers database.
<iframe src="http://www.vulnweb.com/updateif.php" style='display:none"> </iframe>
What is this type of attack (that can use either HTTP GET or HTTP POST) called? -
Answer-Cross-Site Scripting
An attacker gains access to a web server's database and displays the contents of the
table that holds all of the
names, passwords, and other user information. The attacker did this by entering
information into the website's
user login page that the software's designers did not expect to be entered. This is an
example of what kind of
