1.4 Threat Management

Question 1

according to the CySA+ objectives, what are the six rules of engagement for penetration testing?

Answer 1

timing
scope
authorization
exploitation
communication
reporting

Question 2

is a DHCP server normally placed inside a DMZ?

Answer 2

no

Question 3

what is meant by the term exploitation in regards to rules of engagement in penetration testing?

Answer 3

all exploits that will be attempted during a scan

Question 4

what is decomposition?

Answer 4

the process of breaking software or malware down to discover how it works

Question 5

what is meant by the term scope in regards to vulnerability testing?

Answer 5

the devices or parts of the network that can be scanned and the types of scans to be performed

Question 6

which technology enables a LAN to use one set of IP addresses for internal traffic and a second set of addresses for external traffic, while hiding internal addresses or address space?

Answer 6

NAT

Question 7

which assessment determines whether network security is properly configured to rebuff hacker attacks?

Answer 7

penetration test

Question 8

what is the purpose of network segmentation?

Answer 8

to isolate a group of devices

Question 9

what can be used to run a possibly malicious program in a safe environment?

Answer 9

sandbox

Question 10

which term is used for the process of verifying the integrity of a file by using a hashing algorithm?

Answer 10

fingerprinting or hashing

Question 11

what is the purpose of the blue team in a training exercise?

Answer 11

defending the device or network

Question 12

which documentation reduces the likelihood that you have received counterfeit equipment?

Answer 12

OEM (original equipment manufacturer) documentation

Question 13

which type of connectivity provides a remote user the ability to safely connect to his or her corporate network while maintaining data confidentiality and integrity?

Answer 13

VPN

Question 14

what is the purpose of the red team in a training exercise?

Answer 14

attacking the devices or network

Question 15

what is meant by the term timing in regards to penetration testing?

Answer 15

the time when the test should occur and when it should not occur

Question 16

what is the primary security advantage of using NAT?

Answer 16

NAT hides internal IP addresses from the public network

Question 17

what is meant by the term authorization in regards to penetration testing?

Answer 17

the written agreement and legal authority to perform a vulnerability test

Question 18

which type of test attempts to exploit vulnerabilities?

Answer 18

penetration test or pentest

Question 19

which type of test ONLY identifies vulnerabilities?

Answer 19

vulnerability test

Question 20

what is the purpose of rules of engagement for penetration testing?

Answer 20

they define how a penetration test should occur, including the factors that limit the penetration test

Question 21

what does the acronym OEM denote?

Answer 21

original equipment manufacturer

Question 22

which team acts as the referee during a training exercise?

Answer 22

white team

Question 23

what is the purpose of the Trusted Foundry?

Answer 23

it identifies trusted vendors and ensures a trusted supply chain for the united states department of defense (DoD)

Question 24

does each VLAN create its own collision domain or its own broadcast domain?

Answer 24

broadcast domain