Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

A+ > A+ Part 2 > Flashcards

A+ Part 2 Flashcards

1
Q

Windows’ 64-bit shared system files (DLLs and EXEs) are stored in %SystemRoot%\____

A

System32

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

DLL/system Files for the 32-bit versions are stored in %SystemRoot%\

A

syswow64

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

A support operator helps a user who is complaining about latency and sluggish performance. Which of the following will be the least helpful in troubleshooting?

  • Perform a system file check (SFC)
  • Use Task Manager.
  • Reboot.
  • Run fewer programs.
A

In modern systems, checking file integrity will not improve sluggish performance. In most instances, it will have no effect.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

A student considers upgrading but has many custom drivers and hardware in their Windows-driven rig. Where can the student look for a catalog of tested devices and drivers for this platform?

  • HCL
  • PXE
  • NIST
  • SED
A

Microsoft maintains a Windows Logo’d Product List (LPL) catalog, also called the Hardware Compatibility List (HCL). This is a catalog of tested devices and drivers. If a device has not passed Windows logo testing, users should check the device vendor’s website to confirm whether there is a driver available.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

A user brings in a laptop that does not boot. Based on the user’s description, the assistant suggests running chkdsk. How can the user do this?

  • System Restore
  • WinRE
  • UEFI
  • BCD
A

Drop into the Windows Recovery Environment (WinRE) command prompt, where the user could run commands such as diskpart, sfc, chkdsk, bootrec, bcdedit, or regedit to try to repair the installation manually.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

A curious IT professional investigates the hidden System Reserved partition. What will the professional find contained in the partition?

  • RMM
  • MSDS
  • NLA
  • BCD
    *
A

The BOOTMGR and the boot configuration data (BCD) file are normally installed to a hidden System Reserved partition.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

A penetration tester looks to harvest credentials from users who log in locally. Where should the penetration tester look for users who authenticated locally?

SAM
Kerberos
VPN
Web portal

A

In a Windows local sign-in, the Local Security Authority (LSA) compares the submitted credential to the one stored in the Security Accounts Manager (SAM) database, which is part of the registry. This is also referred to as interactive logon.
In a Windows network sign-in, the LSA can pass the credentials for authentication to a network service. The preferred system for network authentication is based on a system called Kerberos.

In a remote sign-in, if the user’s device is not connected to the local network, authentication can take place over some type of virtual private network (VPN).

A pen tester would need access to the web server to access credentials stored to access a web portal.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

A PC user is looking at the wireless card adapter properties on their Windows computer. Which of the following is the most important setting to verify in order to ensure the PC is capable of connecting to an existing network?

  • Power transmission
  • SSID
  • Automatic connection
  • Protocol support
A

Protocol support

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

A server administrator wants to connect to a user’s computer. They are trying to get their patching numbers up and discover that users must pull the updates, so the administrator wants to push a script that forces the pull. The administrator wants to copy the file to users’ automatically hidden shares. Which of the following could the administrator use? (Select all that apply.)

  • C:\Windows$
  • C$
  • C:\Users$
  • ADMIN$
A

ADMIN$
C$

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Where would you look for the option to view and configure wireless adapter status in macOS?

A

In the Status menu on the Menu bar, in the top-right of the screen, or in the Network prefpane.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the name of Apple’s backup software for macOS?

A

Time machine

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

A user finds a .app directory in their Downloads folder on their Mac. What is this most likely indicative of?

  • The package contents were copied.
  • The app setup needs to perform additional actions.
  • The application is being sideloaded.
  • The app has been installed.
A

The app has been installed.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

A _ is a short representation of data. A _ function takes any amount of data as input and produces a fixed-length value as output.

A

hash

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What type of cryptographic key is delivered in a digital certificate?

A

A digital certificate is a wrapper for a subject’s public key. The public and private keys in an asymmetric cipher are paired. If one key is used to encrypt a message, only the other key can then decrypt it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What two factors must a user present to authenticate to a wireless network secured using EAP-TLS?

A
  1. A digital certificate and its associated private key are installed on the wireless station.
  2. Device authentication, typically via a password, PIN, or biometric gesture, permits access to the private key.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

A network professional sets up the ability to authenticate over Extensible Authentication Protocol over Wireless (EAPoW). Which of the following will the professional need to configure?

  • TACACS+
  • WPA3
  • Active directory
  • MFA
A

Extensible Authentication Protocol over Wireless (EAPoW) is a protocol used for wireless network authentication. It allows for a variety of authentication methods to be used over wireless networks. When implementing EAPoW, the network professional will need to configure an authentication server that supports EAP methods, and this is often done using Active Directory (AD). Active Directory is a directory service developed by Microsoft that provides centralized authentication, authorization, and directory services. It’s commonly used for user authentication in enterprise environments, and it can be integrated with various EAP methods to provide secure and centralized authentication for wireless networks.

16
Q

A server administrator discovers that a server service account for a File Transfer Protocol (FTP) server was compromised. Which of the following exploits or vulnerabilities did the malicious actor use?

  • XSS
  • SQL injection
  • Plaintext
  • DoS
A

Plaintext

A plaintext password can be captured by obtaining a password file or by sniffing unencrypted traffic on the network.

17
Q

A server administrator for a corporation with an enterprise network was tasked with setting up a website hosted on-premise. How should the administrator set it up?

  • Content filtering
  • UPnP
  • Port forward
  • Screened subnet
A

A screened subnet can also be referred to by the deprecated terminology demilitarized zone (DMZ). The idea of a screened subnet is that some hosts are placed in a separate network segment with a different IP subnet address range than the rest of the LAN.

18
Q

A network administrator is setting up administrative access to network devices. What common solution is used for this?

  • Kerberos
  • TACACS+
  • RADIUS
  • EAP
A

Where Remote Authentication Dial-in User Service (RADIUS) is often used to authenticate connections by wireless and VPN users, TACACS+ is often used in authenticating administrative access to routers, switches, and access points.

19
Q

A network manager for a growing coffee company sets up wireless access points at cafe locations for users. The manager wants to set up access to allow anyone in the vicinity to join without a password but also make it as secure as possible. Which standard introduced this ability?

  • WPA3
  • WPA2
  • WPA
  • WEP
A

In WPA2, Wi-Fi Enhanced Open traffic is unencrypted. WPA3 encrypts this traffic. This means that any station can still join the network, but traffic is protected against sniffing.

20
Q

A jewelry chain has just discovered how to make a new form of jewels that has never been created before. They want to set up some sort of alarm if the jewels are taken out of their designated area. What type of alarm should the jewelry chain set up specific to the jewels?

  • Motion sensors
  • Circuit
  • RFID
  • Duress
A

Radio frequency ID (RFID) tags and readers can be used to track the movement of tagged objects within an area. This can form the basis of an alarm system to detect whether someone is trying to remove equipment.

21
Q

A security manager at a top-secret facility assesses the feasibility of integrating biometric authentication but has heard that it is often not accurate. Which of the following is the most accurate form of biometrics?

  • Retina scanner
  • Palmprint scanning
  • Fingerprint readers
  • Badge reader
A

Retinal scanning is one of the most accurate forms of biometrics. Retinal patterns are very secure, but the equipment required is expensive and the process is relatively intrusive and complex.

22
Q

You are completing a checklist of security features for workstation deployments. Following the CompTIA A+ objectives, what additional item should you add to the following list, and what recommendation for a built-in Windows feature or features can you recommend be used to implement it?

  • Password best practices
  • End-user best practices
  • Account management
  • Change default administrator’s user account/password
  • Disable AutoRun/AutoPlay
  • Enable Windows Update, Windows Defender Antivirus, and Windows Defender Firewall
A

Data-at-rest encryption. In Windows, this can be configured at file level via the Encrypting File System (EFS) or at disk level via BitLocker.

23
Q

A security consultant has recommended blocking end-user access to the chrome://flags browser page. Does this prevent a user from changing any browser settings?

A

No. The chrome://flags page is for advanced configuration settings. General user, security, and privacy settings are configured via chrome://settings.

24
Q

A security manager sets up a defense in depth mechanism and sets up monitoring to catch communications from the attacker to the malware. What is the manager monitoring for?

  • Spyware
  • C2
  • Keylogger
  • Rootkit
A

Whether a backdoor is used as a standalone intrusion mechanism or to manage bots, the threat actor must establish a connection from the compromised host to a command and control (C2 or C&C) host or network.
Spyware is malware that can perform browser reconfigurations, such as allowing tracking cookies, changing default search providers, opening arbitrary pages at startup, adding bookmarks, and so on.

A keylogger is spyware that actively attempts to steal confidential information by recording keystrokes.

When dealing with a rootkit, administrators should be aware that there is the possibility that it can compromise system files and programming interfaces so that local shell processes no longer reveal their presence.

25
Q

A Firefox user wants to open up their browser settings to configure their intranet as the home page. How can the Firefox user access the settings?

  • chrome://settings
  • edge://settings
  • firefox://settings
  • about:preferences
A

Users can open the internal URL for Firefox by going to about:preferences. Each browser maintains its own settings that are accessed via its Meatball (…) or Hamburger (☰) menu button as well.

26
Q

A security analyst receives a notification of possible malware based on common indicators. After conducting several analyses, the analyst learns the malware used Windows PowerShell to create new malicious processes in the computer’s memory. What is the analyst’s computer likely infected with?

  • Fileless malware
  • Worm
  • Boot sector virus
  • Viruses
A

Fileless malware refers to malicious code that uses the host’s scripting environment, such as Windows PowerShell or PDF JavaScript, to create new malicious processes in memory.

26
Q

A company wants to minimize the number of devices and mobile OS versions that it must support but allow use of a device by employees for personal email and social networking. What mobile deployment model is the best fit for these requirements?

A

Corporate owned, personally enabled (COPE) will allow standardization to a single device and OS. As the requirement does not specify a single device and OS, choose your own device (CYOD) would also fit.

27
Q

A security analyst analyzes how most attackers perform exploits against iOS operating systems. Which of the following is most applicable?

  • Sideloaded apps
  • While tethered
  • Root access
  • Clear app cache
A

For most exploits, this can only be done when the device is attached to a computer while it boots (tethered jailbreak).

28
Q

A user connects their laptop to the company’s wireless access point, but the internet is very slow. A connection to the Wi-Fi with their corporate mobile device is even slower. What should the user try?

  • Check for airplane mode.
  • Check individual radio functions.
  • Move closer to the AP.
  • Reboot the device.
    *
A

On a mobile, be aware that the radio is less powerful than the one on a computer and that a low battery charge will weaken the signal strength. Try moving the device closer to the access point.

29
Q

A security manager is looking at mobile security for company devices. They are investigating no-root firewalls and understanding how this works. Which of the following best describes no-root firewalls?

  • Control access locally.
  • Block phishing sites.
  • Control access through a VPN.
  • Block adware.
    *
A

“No-root” firewalls work by creating a virtual private network (VPN) and then controlling app access to the virtual private network (VPN).

30
Q

A company sets up a mobile device management policy. The company has concerns about the controllability of the devices due to liability, so they are going to purchase the devices for employees to use for business. What is this policy considered?

  • BYOD
  • COBO
  • COPE
  • CYOD
    *
A

Corporate-owned, business only (COBO) means the device is the property of the company and may only be used for company business.

With bring your own device (BYOD), the mobile device is owned by the employee. The mobile will have to meet whatever profile is required by the company.

With corporate-owned, personally enabled (COPE), the device is chosen and supplied by the company and remains its property.

In choose your own device (CYOD), it is similar to COPE but the employee is given a choice of device from a list.

31
Q
A

A+ (6 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions