CND2

Question 1

What number indicates a router advertisement?

Answer 1

9

Question 2

What passes empty frames across the network so that the computers ready to send information to any other computer can insert data into the frame including the destination identifier?

Answer 2

Token Ring

Question 3

What layer in TCP/IP performs modulation, bit and frame synchronization, and error detection?

Answer 3

Network Access Layer

Question 4

In classful IP addressing, the router uses what octet to determine address class?

Answer 4

1st octet

Question 5

What IP class is referred to as 16/s

Answer 5

B

Question 6

What configuration vulnerability exists due to the misconfiguration of computing and network devices?

Answer 6

Default password and settings

Question 7

Improper password management vulnerability comes under which type of network security vulnerability?

Answer 7

Configuration Vulnerabilities

Question 8

What type of encryption do digital certificates use?

Answer 8

Asymmetric

Question 9

What is a limitation of hashing?

Answer 9

Fixed length string?

Question 10

What is a thumbprint on a Digital Certificate?

Answer 10

Specifies the hash value for the certificate, verifies the certificate’s integrity

Question 11

What protocol provides centralized authentication, authorization, and accounting for remote access servers to communicate with a central server?

Answer 11

RADIUS

Question 12

Which of the following is a network security protocol used for authentication, authorization, and accounting for a network device like switches, routers and firewalls through one or more centralized servers?

Answer 12

TACACS+

Question 13

What security requirement refers to the need of security for various components of IS - computers, networks, etc

Answer 13

Discipline Security

Question 14

What security requirement refers to the compliance requirement with various standards

Answer 14

Assurance Security

Question 15

Which part of a security policy implementation focuses on security disciplines, safeguards, procedures, and more?

Answer 15

Policy Description

Question 16

What does security concept of operation do?

Answer 16

Defines roles and responsibilities

Question 17

What are the responsibilities of a network admin while configuring the firewall security policies?

Answer 17

1. Authentication of service or application

2. Enable anti-spoofing protection

Question 18

What policy defines the guidelines for processing, storing, and transmitting sensitive information?

Answer 18

Information Protection Policy

Question 19

What does user account policy not define

Answer 19

Remote Access

Question 20

What ISO standard addresses cybersecurity?

Answer 20

ISO/IEC 27032

Question 21

What does ISO/IEC 27033-1 to -5 address?

Answer 21

Network Security

Question 22

What ISO standard covers customer privacy?

Answer 22

ISO/IEC 27018

Question 23

What ISO is known as ‘security metrics’?

Answer 23

ISO/IEC 27004

Question 24

What ISO defines ‘information security controls’?

Answer 24

ISO/IEC 27002

Question 25

What is a type of inherence factors?

Answer 25

Signature

Question 26

What tool traces the location of missing laptops for recovery?

Answer 26

Ztrace Gold

Question 27

What type of malware can hide the payload part of the data packet?

Answer 27

Trojans

Question 28

What type of malware can change the host by deleting files and reformatting the hard drive?

Answer 28

Virus

Question 29

What command is used to access the Windows Registry?

Answer 29

regedit

Question 30

What is the command for kernal configuration parameters in Linux?

Answer 30

/etc/sysct1.conf

Question 31

What Linux Netstat command is used to know the processes that are accepting connections and a list of open ports?

Answer 31

netstat -a

Question 32

What does ‘/etc/crontab’ in Linux list?

Answer 32

System-wide periodic jobs

Question 33

If a network administrator wants to reduce the impact of unsolicited incoming emails to the email server of his/her organization, which of the following setting will helps to do this?

Answer 33

DNS-based blacklists (DNSBL) servers

Question 34

What does a sys log server not provide

Answer 34

authentication for its messages

Question 35

What should be enabled in the Email server to prevent spoofed email addresses?

Answer 35

Sender Policy Framework (SPF)

Question 36

Enabling IP-directed broadcasts will allow an attacker to perform what using a spoofed address?

Answer 36

Sending ICMP ECHO requests to another user broadcast address

Question 37

What minimizes the consumption of host resources?

Answer 37

Physical Network Security Devices

Question 38

What is the process of mapping virtual networks to the underlying physical network

Answer 38

Virtual Network Embedding

Question 39

What allows an attacker to remotely control a virtual machine

Answer 39

Management console vulnerabilities

Question 40

Network isolation is based on what?

Answer 40

IPsec

Question 41

What firewall works as a proxy server?

Answer 41

Application Level Gateway

Question 42

What is considered while analyzing the security capability of a firewall solution?

Answer 42

Which type of firewall technologies it should support

Question 43

What protocol do firewalls use for token-based authentication?

Answer 43

RADIUS

Question 44

What OS does Netstat.exe work in?

Answer 44

Windows

Question 45

An exploit-based approach works based on which principle?

Answer 45

Packet-oriented pattern

Question 46

What is a browser-based firewall/VPN/Proxy server that generates scheduled reports on firewall traffic?

Answer 46

Firewall Analyzer

Question 47

What can detect an unexpected generation of a sequence of repeated commands?

Answer 47

Stateful protocol analysis

Question 48

What is not a function of IDS?

Answer 48

Vulnerability assessment

Question 49

What IDS detects patterns such as bandwidth?

Answer 49

Anomaly

Question 50

What classification is HIDS and NIDS

Answer 50

Protected System

Question 51

What causes an IDS false alarm

Answer 51

IDS bug

Question 52

What is not detected by Wireless Intrusion Prevention System?

Answer 52

Wireless Protocol Attacks

Question 53

What does a NBA not detect?

Answer 53

Unsecure WLAN devices

Question 54

What creates VPN connections and performs encapsulations?

Answer 54

VPN concentrator

Question 55

In which VPN, can a new site be easily added and only a central site needs to be updated?

Answer 55

Star

Question 56

What is a weak protocol that could allow a MITM attack on a VPN system?

Answer 56

IKE

Question 57

What is sent by RADIUS client to request the information for a permitted connection?

Answer 57

Accounting-request

Question 58

What terminates a VPN session?

Answer 58

Firewall

Question 59

What is sent in response to an access-request?

Answer 59

access-challenge

Question 60

What enables outside users to access TELNET?

Answer 60

Access Control List

Question 61

What VPN protocols use 128 bit encryption?

Answer 61

L2TP/IPSEC

PPTP

Question 62

What acts as a resource reservation control mechanism for a VPN

Answer 62

QoS

Question 63

What affects the connectivity between the client and the gateway in an undesireable way?

Answer 63

Network Address Translation

Question 64

What standard should VPNs follow?

Answer 64

FIPS

Question 65

LAWN uses which modulation technique?

Answer 65

Frequency-hopping Spread Spectrum (FHSS)

Question 66

What antenna concentrates EM energy?

Answer 66

Reflector Antenna

Question 67

What standard does MAN use?

Answer 67

802.16 Wi-MAX

Question 68

In what attack does an attacker set up a rogue access point outside corporate network and tricks employees to connect to it?

Answer 68

Client Mis-Association

Question 69

What SNMP command notifies SNMP managers about an event occurring?

Answer 69

TRAPS

Question 70

What SNMP command retrieves object identifiers?

Answer 70

Get Next

Question 71

What is true about router-based monitoring techniques?

Answer 71

The functionality is hardcoded into the router

Question 72

What layer does SNMP function?

Answer 72

Application

Question 73

What notifies SNMP managers about an event occurring in the network?

Answer 73

TRAPS

Question 74

A stealth scan is detected by observing large amounts of what type of packet?

Answer 74

RST

Question 75

In Xmas scan what response tells the attacker that the port is closed?

Answer 75

RST

Question 76

What framework supports IT governance and management toolset to enable managers to bridge the gap between control requirements, technical issues and business risks?

Answer 76

COBIT

Question 77

What does qualysguard help you perform?

Answer 77

Discovery

Question 78

Which vulnerability phase uses different spoof protection mechanisms?

Answer 78

Mitigation

Question 79

What is the functionality of the Retina CS tool?

Answer 79

Vulnerability assessment

Question 80

What does Nexpose do?

Answer 80

Vulnerability Assessment

Question 81

What is considered when picking the right vulnerability assessment tool?

Answer 81

Must create a baseline

Question 82

What is the process of comparing the data stored in the crashed system with the data stored in the other disk

Answer 82

Parity Check

Question 83

What do you use R-studio for?

Answer 83

Recover lost data

Question 84

What tool helps in recovering data lost in RAID storage media?

Answer 84

Disk Internals

Question 85

What backup tool is used with MACs

Answer 85

ChronoSync

Question 86

What helps to recover the entire contents of a broken NAS

Answer 86

ZAR X

Question 87

What does Norton Ghost help with?

Answer 87

Recover data from Windows-based systems

Question 88

What phase lets an IR team decide whether an incident response is required?

Answer 88

Detection and Analysis

Question 89

What is a CAT 0 incident

Answer 89

Exercise / Network Training

Question 90

What is carried out in parallel with forensic investigation?

Answer 90

Containment

Question 91

Vulnerability Analysis is performed in what phase?

Answer 91

Eradication

Question 92

What phase determines course of action for an incident?

Answer 92

Recovery