_______ is a set of extensions to DNS that provide to DNS clients (resolvers) the origin
authentication of DNS data to reduce the threat of DNS poisoning, spoofing, and similar
types of attacks, - Answer-DNSSEC
........is an attack type for a rogue Wi-Fi access point that appears to be a legitimate one
offered on the
premises, but actually has been set up to eavesdrop on wireless communications. It is
the wireless version of
the phishing scam. An attacker fools wireless users into connecting a laptop or mobile
phone to a tainted
hotspot by posing as a legitimate provider. This type of attack may be used to steal the
passwords of
unsuspecting users by either snooping the communication link or by phishing, which
involves setting up a
fraudulent web site and luring people there.
Fill in the blank with appropriate choice.
A. Evil Twin Attack
B. Sinkhole Attack
C. Collision Attack
D. Signal Jamming Attack - Answer-A. Evil Twin Attack
A bank stores and processes sensitive privacy information related to home loans.
However, auditing has never
been enabled on the system. What is the first step that the bank should take before
enabling the audit feature?
A. Perform a vulnerability scan of the system.
B. Determine the impact of enabling the audit feature.
C. Perform a cost/benefit analysis of the audit feature.
D. Allocate funds for staffing of audit log review. - Answer-B. Determine the impact of
enabling the audit feature.
A company's Web development team has become aware of a certain type of security
vulnerability in their their Web software. To mitigate the possibility of this vulnerability
being exploited, the team wants to modify the software requirements to disallow users
from entering HTML as input into their Web application.
What kind of Web application vulnerability likely exists in their software? - Answer-
Cross-site scripting vulnerability
,A computer science student needs to fill some information into a secured Adobe PDF
job application that was
received from a prospective employer. Instead of requesting a new document that
allowed the forms to be
completed, the student decides to write a script that pulls passwords from a list of
commonly used passwords
to try against the secured PDF until the correct password is found or the list is
exhausted. Which cryptography
attack is the student attempting?
A. Man-in-the-middle attack
B. Session hijacking
C. Brute-force attack
D. Dictionary-attack - Answer-D. Dictionary-attack
A hacker has managed to gain access to a Linux host and stolen the password file from
/etc/passwd. How can
he use it?
A. The file reveals the passwords to the root user only.
B. The password file does not contain the passwords themselves.
C. He cannot read it because it is encrypted.
D. He can open it and read the user ids and corresponding passwords. - Answer-B. The
password file does not contain the passwords themselves.
A hacker has successfully infected an internet-facing server which he will then use to
send junk mail, take part
in coordinated attacks, or host junk email content.
Which sort of trojan infects this server?
A. Botnet Trojan
B. Turtle Trojans
C. Banking Trojans
D. Ransomware Trojans - Answer-A. Botnet Trojan
A hacker is an intelligent individual with excellent computer skills and the ability to
explore a computer's software and hardware without the owner's permission. Their
intention can either be to simply gain knowledge or to illegally make changes. Which of
the following class of hackers refers to an individual who works both offensively and
defensively at various times?
A. White Hat
B. Suicide Hacker
C. Gray Hat
D. Black Hat - Answer-C. Gray Hat
,A hacker named Jack is trying to compromise a bank's computer system. He needs to
know the operating
system of that computer to launch further attacks.
What process would help him?
A. Banner Grabbing
B. IDLE/IPID Scanning
C. SSDP Scanning
D. UDP Scanning - Answer-A. Banner Grabbing
A large company intends to use Blackberry for corporate mobile phones and a security
analyst is assigned to
evaluate the possible threats. The analyst will use the Blackjacking attack method to
demonstrate how an
attacker could circumvent perimeter defenses and gain access to the Prometric Online
Testing - Reports
https://ibt1.prometric.com/users/custom/report_queue/rq_str... corporate network. What
tool should the analyst
use to perform a Blackjacking attack?
A. Paros Proxy
B. BBProxy
C. Bloover
D. BBCrack - Answer-B. BBProxy
A large mobile telephony and data network operator has a data center that houses
network elements. These
are essentially large computers running on Linux. The perimeter of the data center is
secured with firewalls and
IPS systems.
What is the best security policy concerning this setup?
A. Network elements must be hardened with user ids and strong passwords. Regular
security tests and audits
should be performed.
B. As long as the physical access to the network elements is restricted, there is no need
for additional
measures.
C. There is no need for specific security measures on the network elements as long as
firewalls and IPS
systems exist.
D. The operator knows that attacks and down time are inevitable and should have a
backup site. - Answer-A. Network elements must be hardened with user ids and strong
passwords. Regular security tests and audits
should be performed.
, A network administrator discovers several unknown files in the root directory of his
Linux FTP server. One of
the files is a tarball, two are shell script files, and the third is a binary file is named "nc."
The FTP server's
access logs show that the anonymous user account logged in to the server, uploaded
the files, and extracted
the contents of the tarball and ran the script using a function provided by the FTP
server's software. The "ps"
command shows that the "nc" file is running as process, and the netstat command
shows the "nc" process is
listening on a network port.
What kind of vulnerability must be present to make this remote attack possible?
A. File system permissions
B. Privilege escalation
C. Directory traversal
D. Brute force login - Answer-A. File system permissions
A new wireless client is configured to join an 802.11 network. This client uses the same
hardware and software
as many of the other clients on the network. The client can see the network, but cannot
connect. A wireless
packet sniffer shows that the Wireless Access Point (WAP) is not responding to the
association requests being
sent by the wireless client. What is a possible source of this problem?
A. The WAP does not recognize the client's MAC address
B. The client cannot see the SSID of the wireless network
C. Client is configured for the wrong channel
D. The wireless client is not configured to use DHCP - Answer-A. The WAP does not
recognize the client's MAC address
A penetration test was done at a company. After the test, a report was written and given
to the company's IT
authorities. A section from the report is shown below:
-Access List should be written between VLANs.
-Port security should be enabled for the intranet.
-A security solution which filters data packets should be set between intranet (LAN) and
DMZ.
-A WAF should be used in front of the web applications.
According to the section from the report, which of the following choice is true?
A. A stateful firewall can be used between intranet (LAN) and DMZ.
authentication of DNS data to reduce the threat of DNS poisoning, spoofing, and similar
types of attacks, - Answer-DNSSEC
........is an attack type for a rogue Wi-Fi access point that appears to be a legitimate one
offered on the
premises, but actually has been set up to eavesdrop on wireless communications. It is
the wireless version of
the phishing scam. An attacker fools wireless users into connecting a laptop or mobile
phone to a tainted
hotspot by posing as a legitimate provider. This type of attack may be used to steal the
passwords of
unsuspecting users by either snooping the communication link or by phishing, which
involves setting up a
fraudulent web site and luring people there.
Fill in the blank with appropriate choice.
A. Evil Twin Attack
B. Sinkhole Attack
C. Collision Attack
D. Signal Jamming Attack - Answer-A. Evil Twin Attack
A bank stores and processes sensitive privacy information related to home loans.
However, auditing has never
been enabled on the system. What is the first step that the bank should take before
enabling the audit feature?
A. Perform a vulnerability scan of the system.
B. Determine the impact of enabling the audit feature.
C. Perform a cost/benefit analysis of the audit feature.
D. Allocate funds for staffing of audit log review. - Answer-B. Determine the impact of
enabling the audit feature.
A company's Web development team has become aware of a certain type of security
vulnerability in their their Web software. To mitigate the possibility of this vulnerability
being exploited, the team wants to modify the software requirements to disallow users
from entering HTML as input into their Web application.
What kind of Web application vulnerability likely exists in their software? - Answer-
Cross-site scripting vulnerability
,A computer science student needs to fill some information into a secured Adobe PDF
job application that was
received from a prospective employer. Instead of requesting a new document that
allowed the forms to be
completed, the student decides to write a script that pulls passwords from a list of
commonly used passwords
to try against the secured PDF until the correct password is found or the list is
exhausted. Which cryptography
attack is the student attempting?
A. Man-in-the-middle attack
B. Session hijacking
C. Brute-force attack
D. Dictionary-attack - Answer-D. Dictionary-attack
A hacker has managed to gain access to a Linux host and stolen the password file from
/etc/passwd. How can
he use it?
A. The file reveals the passwords to the root user only.
B. The password file does not contain the passwords themselves.
C. He cannot read it because it is encrypted.
D. He can open it and read the user ids and corresponding passwords. - Answer-B. The
password file does not contain the passwords themselves.
A hacker has successfully infected an internet-facing server which he will then use to
send junk mail, take part
in coordinated attacks, or host junk email content.
Which sort of trojan infects this server?
A. Botnet Trojan
B. Turtle Trojans
C. Banking Trojans
D. Ransomware Trojans - Answer-A. Botnet Trojan
A hacker is an intelligent individual with excellent computer skills and the ability to
explore a computer's software and hardware without the owner's permission. Their
intention can either be to simply gain knowledge or to illegally make changes. Which of
the following class of hackers refers to an individual who works both offensively and
defensively at various times?
A. White Hat
B. Suicide Hacker
C. Gray Hat
D. Black Hat - Answer-C. Gray Hat
,A hacker named Jack is trying to compromise a bank's computer system. He needs to
know the operating
system of that computer to launch further attacks.
What process would help him?
A. Banner Grabbing
B. IDLE/IPID Scanning
C. SSDP Scanning
D. UDP Scanning - Answer-A. Banner Grabbing
A large company intends to use Blackberry for corporate mobile phones and a security
analyst is assigned to
evaluate the possible threats. The analyst will use the Blackjacking attack method to
demonstrate how an
attacker could circumvent perimeter defenses and gain access to the Prometric Online
Testing - Reports
https://ibt1.prometric.com/users/custom/report_queue/rq_str... corporate network. What
tool should the analyst
use to perform a Blackjacking attack?
A. Paros Proxy
B. BBProxy
C. Bloover
D. BBCrack - Answer-B. BBProxy
A large mobile telephony and data network operator has a data center that houses
network elements. These
are essentially large computers running on Linux. The perimeter of the data center is
secured with firewalls and
IPS systems.
What is the best security policy concerning this setup?
A. Network elements must be hardened with user ids and strong passwords. Regular
security tests and audits
should be performed.
B. As long as the physical access to the network elements is restricted, there is no need
for additional
measures.
C. There is no need for specific security measures on the network elements as long as
firewalls and IPS
systems exist.
D. The operator knows that attacks and down time are inevitable and should have a
backup site. - Answer-A. Network elements must be hardened with user ids and strong
passwords. Regular security tests and audits
should be performed.
, A network administrator discovers several unknown files in the root directory of his
Linux FTP server. One of
the files is a tarball, two are shell script files, and the third is a binary file is named "nc."
The FTP server's
access logs show that the anonymous user account logged in to the server, uploaded
the files, and extracted
the contents of the tarball and ran the script using a function provided by the FTP
server's software. The "ps"
command shows that the "nc" file is running as process, and the netstat command
shows the "nc" process is
listening on a network port.
What kind of vulnerability must be present to make this remote attack possible?
A. File system permissions
B. Privilege escalation
C. Directory traversal
D. Brute force login - Answer-A. File system permissions
A new wireless client is configured to join an 802.11 network. This client uses the same
hardware and software
as many of the other clients on the network. The client can see the network, but cannot
connect. A wireless
packet sniffer shows that the Wireless Access Point (WAP) is not responding to the
association requests being
sent by the wireless client. What is a possible source of this problem?
A. The WAP does not recognize the client's MAC address
B. The client cannot see the SSID of the wireless network
C. Client is configured for the wrong channel
D. The wireless client is not configured to use DHCP - Answer-A. The WAP does not
recognize the client's MAC address
A penetration test was done at a company. After the test, a report was written and given
to the company's IT
authorities. A section from the report is shown below:
-Access List should be written between VLANs.
-Port security should be enabled for the intranet.
-A security solution which filters data packets should be set between intranet (LAN) and
DMZ.
-A WAF should be used in front of the web applications.
According to the section from the report, which of the following choice is true?
A. A stateful firewall can be used between intranet (LAN) and DMZ.
