General Review

Question 1

Cyber Kill Chain

Answer 1

Reconnaissance

Weaponization

Delivery

Exploitation

Installation

Command/control

Actions on objectives

Question 2

Diamond Model of Intrusion Analysis

Answer 2

Adversary - threat actor group

Capabilities - adversary exploit to carry out attack

Victim

Infrastructure - how attacker gets to victim

Applies scientific principles to provide post-event analysis of intrusion

Question 3

Symmetric Algorithms

Answer 3

RC4

AES (strongest)

DES

3DES

QUAD

Question 4

Asymmetric Algorithms

Answer 4

RSA

Diffie-Hellman

ECC

El Gamal

DSA

Question 5

Linux permissions

Answer 5

Read - 4

Write - 2

Execute - 1

Owner | Group | Other

Question 6

Strongest digital certificate type

Answer 6

EV

Extended validation

Question 7

Quickest digital certificate type to obtain

Answer 7

DV

Domain Validation

Question 8

Function call closely associated with Linux injection attacks

Answer 8

system( )

Question 9

Attack that depends on users being logged into multiple sites in same browser

Answer 9

XSRF

Question 10

Certificate Stapling vs Pinning

Answer 10

Stapling - web server downloading OSCP response from certificate vendor before providing to browsers

Pinning - public key/certificate has been seen for specific host/pinned to host

Question 11

Quick formatting leaves _____ ?

Answer 11

Files remain

File indexes are removed

Question 12

Bluesnarfing vs bluejacking

Answer 12

Bluejacking - pushing unsolicited messages (annoyance)

Bluesnarfing - data theft

Question 13

Vertical scaling vs Horizontal scaling

Answer 13

Vertical - add resources to existing machine

Horizontal - add additional machines

Question 14

OAuth vs OpenID

Answer 14

OAuth (authorization) - open standard for authorization - allow using third party accounts without exposing password

OpenID (authentication) - open standard providing decentralized authentication - log in to multiple websites with one set of credentials

Question 15

Security concerns of IPv6

Answer 15

Scanning sequential IP addresses no longer viable on many networks

Blocking ICMP can cause significant problems

Devices may have more than one IP stack

Question 16

Security concern of SSH keys

Answer 16

Inadvertent exposure of private key

Weak passwords/passphrase

SSH key sprawl

Question 17

NIST SP 500-292

Answer 17

Cloud reference architecture

Understand interactions between different services/organizations in cloud deployment

Question 18

Account permissions for credentialed scan

Answer 18

Read-only

Follow principle of least privilege

Question 19

Component of cryptographic system responsible for secrecy

Answer 19

Key

Question 20

Method to identify rootkit

Answer 20

Mount drive on another system in read-only mode

Boot from USB drive/scan using known good OS

Question 21

Most likely path for macro virus infection

Answer 21

User intentionally enabled macros for file

Question 22

Method to prevent application DoS attacks

Answer 22

Use CAPTCHA to confirm user is human

Question 23

Common measures to assess threat intelligence

Answer 23

Timeliness

Accuracy

Relevance

Question 24

NIST Framework core security functions

Answer 24

Identify

Protect

Detect

Respond

Recover

Question 25

Best CASB solution for interacting directly with CSP

Answer 25

API-based CASB

Question 26

Forensic toolkit that includes memdump

Answer 26

Volatility

Question 27

Method of improving SNMP security

Answer 27

Change public community name

Question 28

What is used in Windows to identify a user account?

Answer 28

security identifier (SID)

Question 29

Type of attack in which JavaScript is entered into text area that will be viewed by other users

Answer 29

XSS

Question 30

What is validated when verifying certificate chain?

Answer 30

Users can verify that the site + CAs in chain are all trustworthy

Question 31

What does Kerberos use to issue tickets?

Answer 31

Key distribution center (KDC)

Question 32

What does Kerberos use to generate tickets?

Answer 32

Ticket granting service (TGS)

Question 33

Capability not common in UTM

Answer 33

MDM

Question 34

Best way to mitigate CSP not supporting same security controls as internal network

Answer 34

CASB

Question 35

Simplest/quickest method to secure weak protocols

Answer 35

SSH tunneling

Question 36

Tool to ensure attacker can't introduce new switch in STP with lower bridge ID

Answer 36

Enable Root Guard

Question 37

What information is placed in CN field for CSR?

Answer 37

FQDN

Question 38

What does port security do?

Answer 38

Filters by MAC address

Question 39

Method for content filtering (not firewall based)

Answer 39

Proxy server

Question 40

Cloud system that stores/manages/allows auditing of API keys/passwords/certificates

Answer 40

Secrets manager

Question 41

Best method for providing RTOS security

Answer 41

Use secure firmware

Question 42

2 techniques most commonly associated with pharming attack

Answer 42

Modifying host's file on a PC Exploiting DNS vulnerability on trusted DNS server

Question 43

Best option for verifying no unnecessary ports/services are available when vulnerability scanner can't be used

Answer 43

Configuration review

Question 44

What function does counter mode perform in a cryptographic system?

Answer 44

Turns block cipher into stream cipher

Question 45

Reflected XSS attack

Answer 45

Script inserted into input field Non-persistent

Question 46

Stored (persistent) XSS attack

Answer 46

Embedded in a website post Not specific to a particular user

Question 47

What size wrapper TKIP places around WEP encryption with key based on things i.e. MAC address of machine/serial number of the packet?

Answer 47

128-bit

Question 48

STIX vs TAXII

Answer 48

STIX - standard for communicating threat information (motivations/abilities/capabilities/response information) TAXII - secure method for sharing STIX data (think taxi cab) Fall under Automated Indicator Sharing (AIS)

Question 49

Data sources to gather to address file storage volatility

Answer 49

Partition data Temporary file systems

Question 50

Security control associated with login banner

Answer 50

Deterrent

Question 51

Part of PC startup process that verifies digital signature of OS kernel

Answer 51

Trusted boot

Question 52

Best way to confirm secure baseline of deployed application instance

Answer 52

Perform integrity measurement

Question 53

DNS sinkhole

Answer 53

Distributes incorrect DNS information Redirect known malicious domains to benign address Clients connecting to known malicious domains indicate certain malware infections Usually built in to NGFW/IDS systems Prevents communication with command + control

Question 54

Edge vs fog computing

Answer 54

Edge - local processing at IoT device Fog - intermediate to local device and cloud (decide what data is transported to cloud for processing)

Question 55

VPC + transit gateway

Answer 55

VPC (virtual private cloud) - pool of resources collected in public cloud Transit gateway - connect VPCs to each other + clients to VPCs Security benefits - VPCs commonly on different subnets + connected to via VPN

Question 56

Banner grabbing

Answer 56

Actively connecting to server using Telnet or netcat Collect server's response Banner usually contains the OS version

Question 57

Data sanitation method of degaussing

Answer 57

Purging (not destruction)

Question 58

SAML

Answer 58

Solution for providing SSO + federated identity management Allows service provider (SP) to establish trust relationship with IdP SP can trust principal without principal having to authenticate directly with SP

Question 59

SPI in GDPR

Answer 59

Sensitive Personal Information Race/ethnic origin Opinions/beliefs

Question 60

Zigbee

Answer 60

Communication standard for IoT devices Longer range than Bluetooth Less power consumption than Wi-Fi

Question 61

Dupont FM-200

Answer 61

Chemical fire suppression for electronics

Question 62

Key stretching algorithms

Answer 62

bcrypt Password-Based Key Derivation Function 2 (PBKDF2)

Question 63

Secure cookies

Answer 63

Will only be sent over HTTPS

Question 64

HTTP Secure Headers

Answer 64

Enforce HTTPS communication Only allow scripts/images/stylesheets from local site (prevent XSS) Prevent data from loading into an inline frame (prevent XSS)