Idk

Question 1

SCAP (Security Content Automation Protocol)

Answer 1

is a multi-purpose framework of specifications that supports automated configuration, vulnerability and patch checking, technical control compliance activities, and security measurement. It is an industry-standard and support testing for compliance.

Question 2

Agile

Answer 2

The Agile Manifesto emphasizes individuals and interactions over the processes and tools that Spiral and Waterfall rely on. It also focuses on working software, customer collaboration, and responding to change as key elements of the Agile process.

Question 3

Waterfall

Answer 3

The waterfall model is a breakdown of project activities into linear sequential phases, where each phase depends on the deliverables of the previous one and corresponds to a specialization of tasks.

Question 4

Rapid Application Development (RAD)

Answer 4

is a form of agile software development methodology that prioritizes rapid prototype releases and iterations. Unlike the Waterfall method, RAD emphasizes the use of software and user feedback over strict planning and requirements recording.

Question 5

Spiral

Answer 5

is a risk-driven software development model that guides a team to adopt elements of one or more process models, such as incremental, waterfall, or evolutionary prototyping.

Question 6

Default Nmap scan type

Answer 6

TCP SYN scan

Question 7

UDP Nmap scan type

Answer 7

-sU flag

Question 8

TCP FIN Nmap scan type

Answer 8

-sF flag

Question 9

Stephane was asked to assess the technical impact of a reconnaissance performed against his organization. He has discovered that a third party has been performing reconnaissance by querying the organization’s WHOIS data. Which category of technical impact should he classify this as?

Answer 9

Since WHOIS data about the organization’s domain name is publicly available, it is considered a LOW impact.

Question 10

An organization wants to choose an authentication protocol that can be used over an insecure network without having to implement additional encryption services. Which of the following protocols should they choose?

Answer 10

The Kerberos protocol is designed to send data over insecure networks while using strong encryption to protect the information.

Question 11

What technology is NOT PKI x.509 compliant and cannot be used in a variety of secure functions?

Answer 11

Blowfish

Question 12

What technology is PKI x.509 compliant and can be used in a variety of secure functions?

Answer 12

AES, PKCS, and SSL/TLS are all compatible with x.509 and can be used in a wide variety of functions and purposes.

Question 13

> ## echo 127.0.0.1 diontraining.com&raquo_space; /etc/hostsWhich of the following best describes what actions were performed by this line of code?

Answer 13

Routed traffic destined for the diontraining.com domain to the localhost.

Question 14

Which of the following provides a cryptographic authentication mechanism to positively identify an organization as the authorized sender of email for a particular domain name?

Answer 14

DomainKeys Identified Mail (DKIM) provides a cryptographic authentication mechanism. This can replace or supplement SPF. To configure DKIM, the organization uploads a public key as a TXT record in the DNS server.

Question 15

Sender Policy Framework (SPF)

Answer 15

uses a DNS record published by an organization hosting an email service. The SPF record identifies the hosts authorized to send email from that domain and there must be only one per domain. SPF does not provide a cryptographic authentication mechanism like DKIM.

Question 16

Domain-Based Message Authentication, Reporting, and Conformance (DMARC)

Answer 16

ensures that SPF and DKIM are being utilized effectively. DMARC relies on DKMI for the cryptographic authentication mechanism.

Question 17

simple mail transfer protocol (SMTP)

Answer 17

is a communication protocol for electronic mail transmission, which does not utilize cryptographic authentication mechanisms by default.

Question 18

Which of the following methods could not be used to retrieve the key from a forensic copy of a BitLocker encrypted drive?

Answer 18

Retrieve the key from the MBR.

-BitLocker information is not stored in the Master Boot Record (MBR).

Question 19

Risk Appetite

Answer 19

An organization’s willingness to tolerate risk.

Question 20

Risk Avoidance

Answer 20

is the response of deploying security controls to reduce the likelihood and/or impact of a threat scenario.

Question 21

Risk Deterrence

Answer 21

is the response of deploying security controls to reduce the likelihood and/or impact of a threat scenario.

Question 22

Risk transference

Answer 22

is the response of moving or sharing the responsibility of risk to another entity.

Question 23

Base64

Answer 23

Most popular format for attackers to obfuscate malicious code.