22questions - Sheet1

Question 1

Which of the following password compliance tools is a password Recovery tool, sniffs network for hashes, and dumps protected storage passwords?

Answer 1

Cain & Able

Question 2

True or False, the input file for the password compliance script is a SAM file

Answer 2

TRUE

Question 3

True/False: CAT III are Vulnerabilities that provide information which have a high potential of giving
access to an intruder.

Answer 3

FALSE

Question 4

Which of the following password compliance tools dumps LM/NTLM hashes from Security Accounts
Manager (SAM) File in Windows, persists in memory, and if used against a domain controller, the
domain controller may need restarting?

Answer 4

PWDump6

Question 5

True or False. Compliance scans are executed after an initial scan

Answer 5

TRUE

Question 6

The name of the STIG complainance scan policy for windows 7 is called _________.

Answer 6

win_7_stig

Question 7

Which is one of the considerations regarding using Nessus to conduct a CE on Windows?

Answer 7

False positives

Question 8

Which of the following is the nessus configuration file?

Answer 8

.nessus.conf

Question 9

Which command is used to determine a failed nessus scan

LO-03 Provided a failed Nessus scan result…

Answer 9

nbe-status.sh

Question 10

Which common plugin number is for Inadequate credentials

Answer 10

24786

Question 11

To ensure findings are reported correctly and not as false positives is part of what?

Answer 11

Manual Validation

Question 12

What is the type of table used to submit results

Answer 12

Pivot

Question 13

True/False: The 92d summarizes all CVA findings within a turn table.

Answer 13

FALSE

Question 14

How is data organized during the assessment?

Answer 14

A pivot table via a spreadsheet

Question 15

Which “.ips” file is used for a patch compliance scan

Answer 15

win.ips

Question 16

True or False, the MAC address needs to be configured for the Nessus Server LO-01 Setup the Nessus server and verify it is operational

Answer 16

TRUE

Question 17

One of the first steps in executing an initial scan is to create a ________ directory.
LO-02 Provided with valid credentials and a target system execute an initial_scan

Answer 17

working

Question 18

Why is manual validation important concerning compliance findings?

Answer 18

It promotes due diligence to eliminate false positives and false negatives

Question 19

What is the name of the script for password compliance?

Answer 19

sam-stat.sh

Question 20

True/False: The name of the policy for the patch compliance scan is win_all.

Answer 20

TRUE

Question 21

What command can be used to check the nessus server is operational?

Answer 21

netstat

Question 22

Which is one of the limitations regarding using Nessus to conduct a CE on Windows?

Answer 22

Nessus can only detect what you program it to see and may introduce false negatives