Misc

Question 1

Which RFC defines the Internet Protocol?

Answer 1

RFC 791

Question 2

This document is considered step by step and can be tied closely to hardware.

Answer 2

Procedure

Question 3

DES does how many rounds during the encryption process?

Answer 3

16

Question 4

What form of testing is there very little or no knowledge of the target network?

Answer 4

Black Box

Question 5

What is Presence?

Answer 5

Remote access program for Apple computers.

Question 6

An Nmap full connect scan uses which switch?

Answer 6

nmap -sT

Question 7

Which risk assessment method is similar to the structured review yet individuals present for the meeting must write their responses down and hand them to the team lead for review?

Answer 7

Modified Delphi

Question 8

DES has an effective key length of?

Answer 8

56

Question 9

Which RFC defines the IETF?

Answer 9

RFC 1700

Question 10

Extended ACLs cannot by default examine which of these?

• Protocol
• IPSEC data
• DSCP
• Precedent Value

Answer 10

IPSEC Data

Question 11

An ICMP type 8 message is best defined as?

Answer 11

Echo Request (Ping)

Question 12

Which RFC defines ICMP?

Answer 12

RFC 792

Question 13

How many steps of the TCP startup are completed in a stealth scan?

Answer 13

Two

Question 14

SLE Formula?

Answer 14

Single Loss Expectancy

AV (asset value) * EF (exposure factor)

Question 15

Which Nmap switch is used to identify the version of OS running?

Answer 15

nmap -O

Question 16

SAFER uses how many blocks of data?

Answer 16

64

Question 17

Which encryption algorithm can be used for data at rest and is based on the Rijndael algorithm?

Answer 17

AES

Question 18

These are considered tactical documents, as they lay out specific steps or processes required to meet a certain requirement.

Answer 18

Standards

Question 19

After completing a port scan you have identified TCP port 80 as open. What should be your next step?

Answer 19

Banner Grab

Question 20

What is jitter?

Answer 20

The variations in transmission latency that can cause packet loss and degraded VoIP call quality.

Question 21

What is ICMP type 3 code 13?

Answer 21

Unreachable Message

Question 22

ALE Formula?

Answer 22

Annualized Loss Expectancy
SLE * ARO

Single Loss Expectancy * Annualized Rate of Occurence

Question 23

What is another name for the software vulnerability version model?

Answer 23

Plan, Secure, Confirm, Remediate

Question 24

SNORT cannot filter what traffic types?

Answer 24

OSPF

Question 25

An IPV4 header has a default length of?

Answer 25

20 bytes

Question 26

Clustering is an example of what control?

Answer 26

Compensating Control

Question 27

What is the specification for an information security management system (ISMS)?

An ISMS is a framework of policies and procedures that includes all legal, physical, and technical controls involved in an organization’s information risk management process.

Includes best practices for information security management.

Answer 27

ISO 27001

Question 28

3DES does how many rounds during the encryption process?

Answer 28

48