CYBR 4330 - Week 3

Question 1

SMB is used to share files and usually runs on top of NetBIOS, NetBEUI, or which of the following?

Answer 1

TCP/IP

Question 2

SNMPWalk is a tool useful in enumerating hosts running SNMP with what type of configuration?

Answer 2

default

Question 3

Some attackers want to be hidden from network devices or IDSs that recognize an inordinate amount of pings or packets being sent to their networks. Which of the following attacks are more difficult to detect?

Answer 3

stealth

Question 4

The 802.11 standard applies to the Physical layer of the OSI model, which deals with wireless connectivity issues of fixed, portable, and moving stations in a local area, and the Media Access Control (MAC) sublayer of which OSI model layer?

Answer 4

Data Link layer

Question 5

The acronym IDS stands for which of the following?

Answer 5

Intrusion Detection System

Question 6

The computer names you assign to Windows systems are called which of the following?

Answer 6

NetBIOS

Question 7

The open-source descendant of Nessus is called which of the following?

Answer 7

OpenVAS

Question 8

The print command for Perl is almost identical to the print command used in which of the following programming languages?

Answer 8

C

Question 9

The virus signature file is maintained by what type of software?

Answer 9

antivirus

Question 10

What directions do you save the a program to on your Web server before you check the URL in your Web browser?

Answer 10

cgi-bin

Question 11

To determine what resources or shares are on a network, security testers must use port scanning and what other procedure first to determine what OS is being used?

Answer 11

footprinting

Question 12

To determine whether a system could be vulnerable to an RPC-related issue, what tool can be used?

Answer 12

MBSA

Question 13

To examine the router’s routing table, a Cisco administrator would enter which command?

Answer 13

show ip route

Question 14

To see additional parameters that can be used with the Netcat command, what should you type at the command prompt?

Answer 14

nc -h

Question 15

To verify if all the IP addresses of a network are being used by computers that are up and running, you can use a port scanner to perform what procedure on a range of IP addresses?

Answer 15

ping

Question 16

Trojan Programs can install a specific type of program to allow an attacker access to the attacked computer later. What means of access is the attacker utilizing?

Answer 16

backdoor

Question 17

UNIX was first written in assembly language. However, it was soon rewritten in what programming language?

Answer 17

Python

Question 18

Ubuntu and Debian Linux use what command to update and manage their RPM packages?

Answer 18

apt-get

Question 19

Ubuntu and Debian Linux use what command to update and manage their RPM packages?

Answer 19

apt-get

Question 20

Visual Basic Script (VBScript) is a scripting language developed by what companies?

Answer 20

Microsoft

Question 21

What 1-pixel x 1-pixel image file is referenced in an tag, and usually works with a cookie to collect information

Answer 21

Web bug

Question 22

What 32-bit number tracks packets received by a node and allows the reassembling of large packets that have been broken up into smaller packets?

Answer 22

ISN

Question 23

What HTTP method is the same as the GET method, but retrieves only the header information of an HTML document, not the document body?

Answer 23

HEAD

Question 24

What IP address is used as a loopback address and is not a valid IP address that can be assigned to a network?

Answer 24

127 address

Question 25

What IPv4 address class has the IP address 221.1.2.3?

Answer 25

Class C

Question 26

What TCP flag is responsible for delivering data directly and immediately to an application?

Answer 26

PSH flag

Question 27

What TCP flag is responsible for synchronizing the beginning of a session?

Answer 27

SYN flag

Question 28

What TCP/IP protocol is fast, unreliable, and operates at the Transport layer?

Answer 28

UDP

Question 29

What TCP/IP protocol is used to send messages related to network operations and can be used to troubleshoot network connectivity?

Answer 29

ICMP

Question 30

What acronym represents the U.S. Department of Justice new branch that addresses computer crime?

Answer 30

CHIP

Question 31

What advanced port-scanning tool can allow a security tester to bypass filtering devices by injecting crafted or otherwise modified IP-packets into a network?

Answer 31

Hping

Question 32

What application is considered the original password-cracking program and is now used by many government agencies to test for password strength?

Answer 32

L0phtcrack

Question 33

What area of a network is a major area of potential vulnerability because of the use of URLs?

Answer 33

DNS

Question 34

What boot loader will allow your computer or laptop to start in both Windows and Linux?

Answer 34

GRUB

Question 35

What common term is used by security testing professionals to describe vulnerabilities in a network?

Answer 35

holes

Question 36

What configuration mode allows a Cisco administrator to configure router settings that affect the overall operations of the router?

Answer 36

Global configuration mode

Question 37

What connection-oriented protocol is utilized by the Transport layer?

Answer 37

TCP

Question 38

What critical component of any OS, that can be can be vulnerable to attacks, is used to store and manage information?

Answer 38

file system

Question 39

What derogatory title do experienced hackers, who are skilled computer operators, give to inexperienced hackers?

Answer 39

script kiddies

Question 40

What does the “NBT” part of “NBTscan” stand for?

Answer 40

NetBIOS over TCP/IP

Question 41

What does the acronym TCP represent?

Answer 41

Transmission Control Protocol

Question 42

What encryption algorithm can be used for both encryption and digital signing, uses a one-way function, and is still widely used in e-commerce?

Answer 42

RSA

Question 43

What encryption algorithm is efficient requiring few resources, and is based on complex algebra and calculations on curves?

Answer 43

ECC

Question 44

What enumeration tool is extremely useful when working with Windows NT, 2000, and Windows XP systems?

Answer 44

DumpSec

Question 45

What feature implemented in Windows 8.1 prevents the execution of non-trusted boot content, preventing rootkits?

Answer 45

SecureBoot

Question 46

What feature implemented in Windows Server 2016 allows for application isolation to protect applications from one another?

Answer 46

Windows Containers

Question 47

What federal law makes it illegal to intercept any type of communication, regardless of how it was transmitted?

Answer 47

Electronic Communication Privacy Act

Question 48

What is the 1 to 32 character configurable name used to identify a WLAN?

Answer 48

SSID

Question 49

What is the HTTP method that retrieves data by URI?

Answer 49

GET

Question 50

What is the IEEE 802 standards name for a wireless network that is limited to one person’s workspace?

Answer 50

WPAN