CYBR 4330 - Week 1

Question 1

standard that describes the creating of a certificate

Answer 1

X.509

Question 2

technique that uses a phishing e-mail to lure a user into following a malicious link

Answer 2

social engineering

Question 3

A device that performs more than one function, such as printing and faxing is called what

Answer 3

MFD

Question 4

A large organization that is responsible for sensitive or critical data may elect to create which of the following to do damage assessment, risk remediation, and legal consultation?

Answer 4

Security Operations Center

Question 5

A malicious computer program that replicates and propagates itself without having to attach to a host is called which of the following?

Answer 5

worm

Question 6

What Windows operating system was the first to disable null sessions by default?

Answer 6

Windows Server 2003

Question 7

Adobe System’s ColdFusion uses its proprietary tags, which are written in which of the following languages?

Answer 7

CFML

Question 8

Carelessly reviewing your program’s code might result in having which of the following in your program code?

Answer 8

bug

Question 9

Closed ports respond to a NULL scan with what type of packet?

Answer 9

RST

Question 10

Connecting to an MS SQL Server database with Microsoft’s Object Linking and Embedding Database (OLE DB) requires using what provider?

Answer 10

SQLOLEDB

Question 11

Cryptography is the process of converting plaintext, which is readable text, into unreadable or encrypted text called which if the following?

Answer 11

ciphertext

Question 12

Cryptosystems that have a single key that encrypts and decrypts data are using what type of algorithm?

Answer 12

symmetric

Question 13

Early Windows OSs used which of the following programs loaded into memory to interact with a network resource or device?

Answer 13

NetBIOS

Question 14

For a Windows computer to be able to access a *nix resource, which of the following must be enabled on both systems?

Answer 14

CIFS

Question 15

How many host computers can be assigned a valid IPv4 address when using a CIDR /24 prefix?

Answer 15

254

Question 16

If a Cisco administrator needs to configure a serial or Fast Ethernet port, which configuration mode should they use?

Answer 16

Interface configuration mode

Question 17

If a security expert decides to study the process of breaking encryption algorithms, they are performing what?

Answer 17

cryptanalysis

Question 18

If an attacker decides to implement a less obvious port-scan, or stealth attack, which of the following techniques would be appropriate to make their activities more difficult to detect?

Answer 18

limit their scan speeds

Question 19

If an attacker wishes to collect confidential financial data, passwords, PINs and any personal data stored on your computer which of the following programs would they choose to use?

Answer 19

Spyware

Question 20

If an organization does not want to rely on a wireless device to authenticate users, which of the following is a secure alternative?

Answer 20

RADIUS server

Question 21

If you do not have access to Nessus, what NMap procedure can be used to help you to gain information about remote *nix hosts?

Answer 21

script scanning

Question 22

If you want to know what the Perl print command does, you can use what command?

Answer 22

perldoc -f print

Question 23

What is the standard name for a team made up of security professionals?

Answer 23

red team

Question 24

In 802.11, what is an addressable unit?

Answer 24

station (STA)

Question 25

In 802.1X, what component refers specifically to the wireless user attempting access to a WLAN?

Answer 25

supplicant

Question 26

In a Linux script, which of the lines is important because it identifies the file as a script?

Answer 26

!/bin/sh

Question 27

In a Perl program, to go from one function to another, you simply call the function by entering which of the following in your source code?

Answer 27

name

Question 28

In a normal TCP session, the sender sends a packet to another computer with which of the following flags set?

Answer 28

SYN flag

Question 29

In an ACK scan, if the attacked port returns an RST packet the attacked port is considered to be operating in what state?

Answer 29

unfiltered

Question 30

In any *NIX system, after saving a script named “script_name,” you need to make it executable so that you can run it. Which command will accomplish this task from the command line?

Answer 30

chmod +x script_name

Question 31

In object-oriented programming, a function contained in a class is called which of the following?

Answer 31

member function

Question 32

In the C programming language, which of the following show where a block of code begins and ends?

Answer 32

braces

Question 33

n the C programming language, which statement tells the compiler to keep doing what is in the brackets over and over and over?

Answer 33

for(;;)

Question 34

In the C programming language, which variable type holds the value of a single letter?

Answer 34

Char

Question 35

In the Perl programming language, comment lines begin with the which of the following character(s)?

Answer 35

#

Question 36

In the Perl programming language, variables begin with which of the following characters?

Answer 36

$

Question 37

In the Perl programming language, which of the following keywords is used in front of function names?

Answer 37

sub

Question 38

In the TCP/IP stack, what layer is concerned with controlling the flow of data, sequencing packets for reassembly, and encapsulating the segment with a TCP or UDP header?

Answer 38

Transport

Question 39

In the TCP/IP stack, what layer is concerned with physically moving bits across the network’s medium?

Answer 39

Network

Question 40

In what type of attack does the attacker have the ciphertext of several messages that were encrypted with the same encryption algorithm, but has no access to the plaintext so he or she must try to calculate the key used to encrypt the data?

Answer 40

ciphertext-only

Question 41

In what type of attack does the attacker need access to the cryptosystem, and the ciphertext to be decrypted to yield the desired plaintext results?

Answer 41

chosen-ciphertext

Question 42

Many experienced penetration testers will write a set of instructions that runs in sequence to perform tasks on a computer system. What type of resource are these penetration testers utilizing?

Answer 42

scripts

Question 43

Microsoft Baseline Security Analyzer has its origins in which of the following command line scanners?

Answer 43

HFNetChk

Question 44

NetBIOS over TCP/IP is called what in Windows Server 2003?

Answer 44

NetBT

Question 45

NetBios should be understood by a security professional because it is used for which of the following?

Answer 45

backward compatibility

Question 46

One of the limitations when using “ping sweeps” is that many network administrators configure nodes not to respond to ICMP Echo Requests. What type of ICMP Echo message is being disabled by these administrators?

Answer 46

reply

Question 47

What can a security consultant do to ensure the client fully understands the scope of testing that will be performed?

Answer 47

create a contractual agreement

Question 48

Red Hat and Fedora Linux use what command to update and manage their RPM packages?

Answer 48

yum

Question 49

Rootkits that pose the biggest threat to any OS are those that infect what part of the targeted device?

Answer 49

firmware

Question 50

SCADA systems controlling critical infrastructure are usually completely separated from the Internet by which of the following?

Answer 50

air gap