Ch 9: Network Risk Management

Question 1

What penetration testing tool combines known scanning and exploit techniques to explore potentially new attack routes?

Answer 1

metasploit

Question 2

Which of the following statements correctly describes the malware characteristic of polymorphism?

Answer 2

Polymorphic malware can change its characteristics every time it is transferred to a new system.

Question 3

A virus that remains dormant until a specific condition is met, such as the changing of a file or a match of the current date is known as what type of malware?

Answer 3

logic bomb

Question 4

Which of the following statements describes a worm?

Answer 4

A program that runs independently of other software and travels between computers and across networks.

Question 5

If multiple honeypots are connected to form a larger network, what term is used to describe the network?

Answer 5

honeynet

Question 6

An attack that relies on redirected and captured secure transmissions as they occur is known as what type of attack?

Answer 6

man-in-the-middle attack

Question 7

Which of the following scenarios represents a phishing attempt?

Answer 7

An e-mail was sent to a manager at your company that appeared to be from the company’s CTO, asking for access.

Question 8

In a red team-blue team exercise, what is the purpose of the blue team?

Answer 8

The blue team is charged with the defense of the network.

Question 9

Which of the following utilities performs sophisticated vulnerability scans, and can identify unencrypted data such as credit card numbers?

Answer 9

Nessus

Question 10

If someone is offered a free gift or service in exchange for private information or access to a computer system, what type of social engineering is taking place?

Answer 10

quid pro quo

Question 11

A person posing as an employee strikes up a conversation with a legitimate employee as they walk into a secured area, in an attempt to gain access. What kind of social engineering is this?

Answer 11

tailgating

Question 12

In the typical social engineering attack cycle, what occurs at Phase 3?

Answer 12

The attacker exploits an action undertaken by the victim in order to gain access.

Question 13

The concept of giving employees and contractors only enough access and privileges to do their jobs is known by what term?

Answer 13

principle of least privilege

Question 14

What statement regarding denial-of-service (DoS) attacks is accurate?

Answer 14

A denial-of-service attack prevents legitimate users from accessing normal network resources.

Question 15

Utilized by China’s so-called “Great Firewall”, what type of attack can prevent user access to web pages, or even redirect them to illegitimate web pages?

Answer 15

DNS poisoning

Question 16

What is the Nmap utility used for?

Answer 16

It is a port scanning utility that can identify open ports on a host.

Question 17

How is a posture assessment performed on an organization?

Answer 17

A thorough examination of each aspect of the organization’s network is performed to determine how it might be compromised.

Question 18

What type of door access control is a physical or electronic lock that requires a code in order to open the door?

Answer 18

cipher lock

Question 19

An RFID label on a box is an example of what type of physical security detection method?

Answer 19

asset tracking tagging

Question 20

What statement regarding the different versions of the SHA hashing algorithm is accurate?

Answer 20

SHA-2 and SHA-3 both support the same hash lengths.

Question 21

On a Linux based system, what command can you use to create a hash of a file using SHA-256?

Answer 21

sha256sum

Question 22

Which command can be used on a Windows system to create a hash of a file?

Answer 22

Get-FileHash

Question 23

VMware’s AirWatch and Cisco’s Meraki Systems Manager are both examples of what type of software?

Answer 23

mobile device management software

Question 24

A variant of BYOD, what does CYOD allow employees or students to do?

Answer 24

They can choose a device from a limited number of options.

Question 25

Where would restrictions regarding what users can and cannot do while accessing a network’s resources be found?

Answer 25

acceptable use policy document

Question 26

What document addresses the specific concerns related to special access given to administrators and certain support staff?

Answer 26

privileged user agreement

Question 27

Which of the following scenarios would necessitate the use of a non-disclosure agreement?

Answer 27

Your company needs to prevent a new contractor from sharing information with a potential competitor.

Question 28

How often should you require users to change their passwords?

Answer 28

every 60 days

Question 29

What type of an attack forces clients off a wireless network, creating a form of Wi-Fi DoS?

Answer 29

deauthentication attack

Question 30

Which type of DoS attack involves an attack that is bounced off uninfected computers before being directed at the target?

Answer 30

distributed reflection denial-of-service attack