SEC110 Final Exam Test Questions and Answers Graded A+
Threat actors focused on financial gain often a.Red hat hackers
attack which of the following main target b.Gray hat hackers
categories? c.White hat hackers
a.Individual users d.Black hat hackers - ANSWER -d.Black
b.REST services hat hackers
c.Product lists
d.Social media assets - ANSWER -
a.Individual users Which of the following is a primary difference
between a red team and a white team?
a.The red team uses an automated vulnerability
What is a variation of a common social scanning tool to find vulnerabilities, whereas the
engineering attack targeting a specific user? white team decides which tool to use in
a.Spam automated vulnerability scanning.
b.Watering holes b.The red team provides real-time feedback to
c.Redirection enhance the threat detection capability, whereas
d.Spear phishing - ANSWER -d.Spear the white team defines the rules of penetration
phishing testing.
c.The red team uses an automated vulnerability
scanning tool to find vulnerabilities, whereas the
Which of the following computing platforms is white team defines the rules of penetration
highly vulnerable to attacks? testing.
a.On-premises d.The red team scans for vulnerabilities and
b.Hybrid exploits them manually, whereas the white team
c.Legacy defines the rules of the penetration testing. -
d.Cloud - ANSWER -c.Legacy ANSWER -d.The red team scans for
vulnerabilities and exploits them manually,
whereas the white team defines the rules of the
Which of the following is a social engineering penetration testing.
method that attempts to influence the subject
before the event occurs?
a.Watering hole Which of the following is the advantage of
b.Spear phishing penetration testing over vulnerability scanning?
c.Redirection a.Penetration testing performs automated scans
d.Prepending - ANSWER -d.Prepending to discover vulnerabilities and prevent
penetration, while vulnerability scanning requires
manually scanning for vulnerabilities.
Which of the following is the most common b.Penetration testing scans a network for open
method for delivering malware? FTP ports to prevent penetration, while
a.Email vulnerability scanning only discovers versions of
b.Identity theft the running services.
c.Removable media c.Penetration testing performs SYN DOS attacks
d.Social media - ANSWER -a.Email towards a server in a network, while vulnerability
scanning only discovers versions of the running
services.
d.Penetration testing uncovers and exploits deep
Which threat actors violate computer security for
vulnerabilities, while vulnerability scanning only
personal gain?
1/3
Threat actors focused on financial gain often a.Red hat hackers
attack which of the following main target b.Gray hat hackers
categories? c.White hat hackers
a.Individual users d.Black hat hackers - ANSWER -d.Black
b.REST services hat hackers
c.Product lists
d.Social media assets - ANSWER -
a.Individual users Which of the following is a primary difference
between a red team and a white team?
a.The red team uses an automated vulnerability
What is a variation of a common social scanning tool to find vulnerabilities, whereas the
engineering attack targeting a specific user? white team decides which tool to use in
a.Spam automated vulnerability scanning.
b.Watering holes b.The red team provides real-time feedback to
c.Redirection enhance the threat detection capability, whereas
d.Spear phishing - ANSWER -d.Spear the white team defines the rules of penetration
phishing testing.
c.The red team uses an automated vulnerability
scanning tool to find vulnerabilities, whereas the
Which of the following computing platforms is white team defines the rules of penetration
highly vulnerable to attacks? testing.
a.On-premises d.The red team scans for vulnerabilities and
b.Hybrid exploits them manually, whereas the white team
c.Legacy defines the rules of the penetration testing. -
d.Cloud - ANSWER -c.Legacy ANSWER -d.The red team scans for
vulnerabilities and exploits them manually,
whereas the white team defines the rules of the
Which of the following is a social engineering penetration testing.
method that attempts to influence the subject
before the event occurs?
a.Watering hole Which of the following is the advantage of
b.Spear phishing penetration testing over vulnerability scanning?
c.Redirection a.Penetration testing performs automated scans
d.Prepending - ANSWER -d.Prepending to discover vulnerabilities and prevent
penetration, while vulnerability scanning requires
manually scanning for vulnerabilities.
Which of the following is the most common b.Penetration testing scans a network for open
method for delivering malware? FTP ports to prevent penetration, while
a.Email vulnerability scanning only discovers versions of
b.Identity theft the running services.
c.Removable media c.Penetration testing performs SYN DOS attacks
d.Social media - ANSWER -a.Email towards a server in a network, while vulnerability
scanning only discovers versions of the running
services.
d.Penetration testing uncovers and exploits deep
Which threat actors violate computer security for
vulnerabilities, while vulnerability scanning only
personal gain?
1/3
