Info I Got Wrong

Question 1

Error detecting used to detect accidental changes to data

Answer 1

Cyclic redundancy check (CRC)

Question 2

What is another name for a directory traversal or a path traversal?

Answer 2

HTTP attack

Question 3

What is a swap file?

Answer 3

Temporary files on a hard disk used as a virtual memory

Question 4

Example of order of volatility

Answer 4

Processor cache, RAM, swap file, HDD

Question 5

What is a false antivirus pop-up or notification

Answer 5

Rogue AV

Question 6

What is the European version of PII?

Answer 6

Sensitive personal info (SPI)

Question 7

Moving your servers and computers into the cloud

Answer 7

IaaS

Question 8

What is a known threat?

Answer 8

When something can be identified using signatures and patterns

Question 9

Cloud applications

Answer 9

SaaS

Question 10

Runtime containers for running different language code

Answer 10

FaaS

Question 11

What do you add at the end of a firewall’s ACL?

Answer 11

Implicit deny

Question 12

A username and password is an example of what?

Answer 12

PAP Authentication

Question 13

What are the most common vulnerabilities found on Windows and Linux systems?

Answer 13

Missing patches.

Question 14

Automated injection of breached usernames and passwords to gain access fraudulently

Answer 14

Credential stuffing

Question 15

If you run a vulnerability scan on a Network and only find a few critical vulnerabilities what did you do wrong?

Answer 15

You did not run a credential scan.

Question 16

Buffer overflow’s are most easily detected by what?

Answer 16

Static code analysis

Question 17

How do you renew a service certificate?

Answer 17

Certificate signing request (CSR)

Question 18

What is a key escrow?

Answer 18

It stores keys.

Question 19

OCSP

Answer 19

Status of certificates that tells if it is good, revoked, or unknown.

Question 20

What is the strongest response to an incident?

Answer 20

Isolation

Question 21

Is degaussing a method of purging or destruction?

Answer 21

Purging

Question 22

What is a server area fire extinguishing system?

Answer 22

FM-200

Question 23

Why is SMS not a good idea for multi factor authentication?

Answer 23

It may be accessible to attackers through VOIP.

Question 24

Where does a user agent request a resource from during a SAML transaction?

Answer 24

A service provider (sp)

Question 25

Who has the ultimate responsibility for maintaining confidentiality, integrity, and authentication in a system

Answer 25

Data owner

Question 26

Who is in charge of data quality, labeling, identification, and ensuring that data is collected and stored in accordance with laws?

Answer 26

Data steward

Question 27

Who manages the system where data is stored, manages access control, encryption, back up and recovery?

Answer 27

Data custodian

Question 28

Who is in charge of PII and PHI?

Answer 28

Privacy officer

Question 29

What is the time that you must have services back up in?

Answer 29

RTO

Question 30

What account do you use for a kiosk? And why?

Answer 30

A guest account, because it has limited capability no privacy and is disabled by default.

Question 31

Who ensures that organization processes personal data in accordance with applicable data protection rules?

Answer 31

Data protection officer

Question 32

What is a secure protocol for remote access services?

Answer 32

CHAP

Question 33

What verifies the device drivers during Windows startup?

Answer 33

Early Launch Anti Malware (ELAM)

Question 34

Where do you store certificates in a server?

Answer 34

Hardware Security Module (HSM)

Question 35

What is the certificate that you see in the address bar of a website (the lock icon)?

Answer 35

Domain validation certificate (DV)

Question 36

Certificate that validates that software was not altered?

Answer 36

Code signing certificate

Question 37

DIG

Answer 37

Command used to look up information from DNS servers. More advanced than nslookup

Question 38

Nslookup

Answer 38

Command used to look up information from DNS servers

Question 39

SSO/ Federated identity solution which is open sourced?

Answer 39

Shibboleth

Question 40

Get up and running quickly, get back to a particular service level.

Answer 40

Recovery Time Objective (RTO)

Question 41

How much data loss is acceptable? How far back does data go?

Answer 41

Recovery Point Objective (RPO)

Question 42

When something was approved but not supposed to be

Answer 42

False Acceptance Rate (FAR)

Question 43

What is a Secure Web Gateway (SWG)

Answer 43

A device that all traffic is funneled through and prevents users from visiting sites that may have malware.

Question 44

What is the most detailed/explicit access control?

Answer 44

Attribute-based Access Control (ABAC)

Question 45

Amount of data loss a system can sustain, measured in time?

Answer 45

Recovery point objective (RPO)

Question 46

Moving a virtual machine from one physical environment to another, it is not an attack method.

Answer 46

VM Migration

Question 47

Machine is trained to analyze a baseline, deviation from it sets off an alarm.

Answer 47

Behavior based

Question 48

What authentication method do captive portals usually rely on?

Answer 48

Radius

Question 49

When app/platform updates are committed to a production environment rapidly.

Answer 49

Continuous deployment

Question 50

When you substitute parts of a word with x’s

Answer 50

Data masking

Question 51

Relies on mutual authentication of client and server

Answer 51

LDAPS

Question 52

Detect malware that is loaded early in the system start a process or before the operating system can load

Answer 52

Measured boot

Question 53

Used to capture the hard disks information to support a forensic investigation

Answer 53

Master boot record analysis

Question 54

Validates the users identity when using SAML

Answer 54

IdP

Question 55

Process of harvesting an accounts cached credentials when the user logs into single sign on system

Answer 55

Pass the hash

Question 56

Kerberos ticket that can grant other tickets in active directories

Answer 56

Golden ticket

Question 57

What kind of breach should you contact your credit card processor about?

Answer 57

PCI-DSS

Question 58

Who provide services to members of a federation?

Answer 58

Relying parties (RP)

Question 59

An encryption downgrade attack which causes a reversion to an earlier/less secure encryption.

Answer 59

POODLE

Question 60

When a single bit is changed in the plaintext, there should be a drastic change in the cipher text.

Answer 60

Confusion

Question 61

When a single bit is changed in the plaintext more than half of the bits should change in the cipher text.

Answer 61

Diffusion

Question 62

A history of ownership

Answer 62

Provenance

Question 63

A history of who handled the data

Answer 63

Chain of custody

Question 64

Used in a cloud based environment to monitor the entire network and respond to security threats in real time?

Answer 64

Software-defined visibility (SDV)

Question 65

Injecting client side scripts into a web page to be viewed by others (like making a pop up come up)?

Answer 65

Cross site scripting

Question 66

Similar to identity fraud. Initiate bank transfers, send messages, etc while acting like a different person.

Answer 66

Cross site request forgery

Question 67

Which authentication protocol utilizes an obfuscated password created from a shared secret?

Answer 67

Radius

Question 68

802.1x usually relies on which protocol as the authentication method?

Answer 68

EAP

Question 69

Utilizes carefully written scripts to orchestrate run books and generate server builds?

Answer 69

Infrastructure as code (IaC)

Question 70

Approach to network-management that utilizes efficient programming to improve performance monitoring?

Answer 70

Software defined networking (SDN)

Question 71

If you want a single ethernet port to redirect different users to different networks what do you use?

Answer 71

NAC

Question 72

What do power shell scripts end in?

Answer 72

.ps1

Question 73

A computer security project that provides info about security vulnerabilities and aids in pentesting and IDS Signature development?

Answer 73

Metasploit

Question 74

An attack in which the goal is to execute arbitrary commands on the host operating system through a vulnerable application

Answer 74

Command injection

Question 75

How much risk an organization is willing to accept

Answer 75

Risk appetite

Question 76

When an organization accepts the identified risk and doesn’t worry about transferring or mitigating it

Answer 76

Risk acceptance

Question 77

What are three ways to sanitize a hard drive?

Answer 77

Crypto erase (CE), secure erase (SE), zero fill

Question 78

What is secure erase used for?

Answer 78

Flashbased systems like solid state drives or a USB, when crypto erase is not possible

Question 79

What is zero Fill not effective on?

Answer 79

Solid state drives and hybrid drives

Question 80

What is clearing?

Answer 80

A logical way to overwrite data with ones and zeros. A factory reset.

Question 81

What is the strongest level of protection for access control?

Answer 81

MAC

Question 82

Algorithm for token-based authentication that does not expire?

Answer 82

HMAC-based One Time Password (HOTP)

Question 83

What can help with a zero day attack?

Answer 83

An application allow list

Question 84

What are four windows memory capture tools?

Answer 84

Memdump, Volatility Framework, DumpIt, Encase.

Question 85

When an attacker captures packets, extracts info, then puts it back on the network.

Answer 85

Replay attack

Question 86

I’m asymmetric key system, how do you encrypt the message to the recipient?

Answer 86

With their public key.

Question 87

What is the difference between proprietary data and sensitive data?

Answer 87

Propriety data is shared with customers on a limited basis. Sensitive data can cause serious damage to company if shared.

Question 88

If an attacker tries every word in the dictionary is this a brute force attack or a dictionary attack?

Answer 88

Dictionary attack

Question 89

What assigns a random surrogate value with no mathematical relationship that can be reversed by being linked back to original data?

Answer 89

Tokenization

Question 90

Which control type includes organizational culture and physical controls that form the outer layer of defense?

Answer 90

Operational

Question 91

Which certificate format is associated with windows and Java tomcat?

Answer 91

P7B

Question 92

Which certificate format is associated with Java platforms?

Answer 92

DER

Question 93

The conversion of data to its simplest known form

Answer 93

Normalization