WGU C783 AHN1 COMPREHENSIVE STUDY
GUIDE 2026 FULL QUESTIONS AND
SOLUTIONS GRADED A+
◍ A malicious user was able to obtain contact information for top-level
company executives and IT staff from multiple public websites. Which
strategy should the company adopt to reduce the risk from similar future
attacks?.
Answer: Implement a social media policy
◍ data at rest.
Answer: Data that is on a storage device of some kind and is not moving
◍ Which type of attack can overwhelm a web server by inserting more data
into a web form than the systemwas con gured to hold?.
Answer: Buffer overflow
◍ Which type of software is used to provide virtualization?.
Answer: Hypervisor
◍ defense in depth.
Answer: A multilayered defense that will allow us to achieve a successful
defense should one or more of our defensive measures fail
◍ major categories of physical threats.
Answer: extreme temperature, gases, living organisms, projectiles,
movement, energy anomalies, people, toxins, smoke, and fire
◍ Which protocol suite performs functions of OSI(Open Systems
Interconnection model) layer 4?.
Answer: TCP(Transmission Control Protocol)
◍ circumvention.
, Answer: Describes the ease with which a system can be tricked by a falsified
biometric identifier
◍ Physical access controls.
Answer: Access controls that regulate movement into and out of building or
facilities
◍ permanence.
Answer: how well a particular characteristic resists change over time and
with advancing age
◍ Which type of attack sends an email claiming to be from a reputable
business in order to entice the recipient to provide sensitive information?.
Answer: Phishing
◍ GLBA (Gramm-Leach-Bliley Act).
Answer: this law protects the customers of financial institutions
◍ identity verification.
Answer: Something that supports our claim to identity, either in our personal
interactions or in computer systems, e.g. social security cards
◍ Which firewall feature can be used to authenticate users on behalf of another
secure system?.
Answer: Proxy server
◍ Which type of firewall initiates a new connection on behalf of the client and
presents its own IP to theserver when a client initiates a connection to a
server?.
Answer: Circuit level
◍ Which network topology is being implemented when each node connects to
exactly two other nodes,forming a single continuous pathway for signals
through each node?.
Answer: Ring
◍ Which OSI(Open Systems Interconnection model) layer is responsible for
organizing how bits are passed over the physical layer between devices
, within the same collision domain?.
Answer: Data link
◍ stream cipher.
Answer: A type of cipher that encrypts each bit in the plaintext message, 1
bit at a time
◍ Which command should be used to manually enter the default gateway for a
computer?.
Answer: route
◍ Which network device can be used as shared storage for all member nodes
of a LAN?.
Answer: File server
◍ equipment, facility repair/replacement.
Answer: Name the considerations for protecting equipment
◍ tailgating (piggybacking).
Answer: a method by which a person follows directly behind another person
who authenticates to the physical access control measure, thus allowing the
follower to gain access without authenticating
◍ DRP (Disaster Recovery Plan).
Answer: the plans we put in place in preparation for a potential disaster, and
what exactly we will do during and after
◍ An attacker plans to exploit flaws in an operating system to gain access to a
user's computer system.What is a prevention mechanism for this type of
attack?.
Answer: Patching(bugfixes in software)
◍ SSH (Secure Shell).
Answer: protocol used to secure traffic in a variety of ways, including file
transfers and terminal access. uses RSA encryption (asymmetric encryption)
◍ physical security.
Answer: A type of security that is concerned with the protection of people,
, equipment, and data
◍ Which service offering provides the tools and environment for application
development and testing?.
Answer: PaaS
◍ Which feature of a firewall allows an organization to use private
non-routable networks while enablingcommunication to the internet?.
Answer: Port Address Translation (PAT)
◍ Which group of attackers is typically used for penetration testing?.
Answer: Red team
◍ hash function (message digest).
Answer: keyless cryptography that creates a largely unique and fixed-length
hash value based on the original mesage
◍ CSRF (Cross Site Request Forgery).
Answer: a type of attack that misuses the authority of the browser on the
user's computer
◍ If you are not protecting it, the dragon wins!.
Answer: The 3rd Law of Haas' Laws of Operations Security
◍ Which phrase describes unencrypted data?.
Answer: In the clear
◍ Which network protocol allows a user to authenticate to a remote server,
navigate the server's file structure, and upload and download files?.
Answer: ftp(File Transfer Protocol)
◍ Which networking standard uses UTP(Unshielded Twisted Pair) cable and
CSMA/CD(Carrier-sense multiple access with collision detection) to
manage connected devices' access to the wire?.
Answer: Ethernet
◍ physical security controls.
Answer: The devices, systems, people, and other methods we put in place to
ensure our security in a physical sense
GUIDE 2026 FULL QUESTIONS AND
SOLUTIONS GRADED A+
◍ A malicious user was able to obtain contact information for top-level
company executives and IT staff from multiple public websites. Which
strategy should the company adopt to reduce the risk from similar future
attacks?.
Answer: Implement a social media policy
◍ data at rest.
Answer: Data that is on a storage device of some kind and is not moving
◍ Which type of attack can overwhelm a web server by inserting more data
into a web form than the systemwas con gured to hold?.
Answer: Buffer overflow
◍ Which type of software is used to provide virtualization?.
Answer: Hypervisor
◍ defense in depth.
Answer: A multilayered defense that will allow us to achieve a successful
defense should one or more of our defensive measures fail
◍ major categories of physical threats.
Answer: extreme temperature, gases, living organisms, projectiles,
movement, energy anomalies, people, toxins, smoke, and fire
◍ Which protocol suite performs functions of OSI(Open Systems
Interconnection model) layer 4?.
Answer: TCP(Transmission Control Protocol)
◍ circumvention.
, Answer: Describes the ease with which a system can be tricked by a falsified
biometric identifier
◍ Physical access controls.
Answer: Access controls that regulate movement into and out of building or
facilities
◍ permanence.
Answer: how well a particular characteristic resists change over time and
with advancing age
◍ Which type of attack sends an email claiming to be from a reputable
business in order to entice the recipient to provide sensitive information?.
Answer: Phishing
◍ GLBA (Gramm-Leach-Bliley Act).
Answer: this law protects the customers of financial institutions
◍ identity verification.
Answer: Something that supports our claim to identity, either in our personal
interactions or in computer systems, e.g. social security cards
◍ Which firewall feature can be used to authenticate users on behalf of another
secure system?.
Answer: Proxy server
◍ Which type of firewall initiates a new connection on behalf of the client and
presents its own IP to theserver when a client initiates a connection to a
server?.
Answer: Circuit level
◍ Which network topology is being implemented when each node connects to
exactly two other nodes,forming a single continuous pathway for signals
through each node?.
Answer: Ring
◍ Which OSI(Open Systems Interconnection model) layer is responsible for
organizing how bits are passed over the physical layer between devices
, within the same collision domain?.
Answer: Data link
◍ stream cipher.
Answer: A type of cipher that encrypts each bit in the plaintext message, 1
bit at a time
◍ Which command should be used to manually enter the default gateway for a
computer?.
Answer: route
◍ Which network device can be used as shared storage for all member nodes
of a LAN?.
Answer: File server
◍ equipment, facility repair/replacement.
Answer: Name the considerations for protecting equipment
◍ tailgating (piggybacking).
Answer: a method by which a person follows directly behind another person
who authenticates to the physical access control measure, thus allowing the
follower to gain access without authenticating
◍ DRP (Disaster Recovery Plan).
Answer: the plans we put in place in preparation for a potential disaster, and
what exactly we will do during and after
◍ An attacker plans to exploit flaws in an operating system to gain access to a
user's computer system.What is a prevention mechanism for this type of
attack?.
Answer: Patching(bugfixes in software)
◍ SSH (Secure Shell).
Answer: protocol used to secure traffic in a variety of ways, including file
transfers and terminal access. uses RSA encryption (asymmetric encryption)
◍ physical security.
Answer: A type of security that is concerned with the protection of people,
, equipment, and data
◍ Which service offering provides the tools and environment for application
development and testing?.
Answer: PaaS
◍ Which feature of a firewall allows an organization to use private
non-routable networks while enablingcommunication to the internet?.
Answer: Port Address Translation (PAT)
◍ Which group of attackers is typically used for penetration testing?.
Answer: Red team
◍ hash function (message digest).
Answer: keyless cryptography that creates a largely unique and fixed-length
hash value based on the original mesage
◍ CSRF (Cross Site Request Forgery).
Answer: a type of attack that misuses the authority of the browser on the
user's computer
◍ If you are not protecting it, the dragon wins!.
Answer: The 3rd Law of Haas' Laws of Operations Security
◍ Which phrase describes unencrypted data?.
Answer: In the clear
◍ Which network protocol allows a user to authenticate to a remote server,
navigate the server's file structure, and upload and download files?.
Answer: ftp(File Transfer Protocol)
◍ Which networking standard uses UTP(Unshielded Twisted Pair) cable and
CSMA/CD(Carrier-sense multiple access with collision detection) to
manage connected devices' access to the wire?.
Answer: Ethernet
◍ physical security controls.
Answer: The devices, systems, people, and other methods we put in place to
ensure our security in a physical sense
