Practice Exam

Question 1

A social engineering technique whereby attackers under the disguise of a legitimate request attempt to gain access to confidential information is commonly referred to as:

• Phishing
• Privilege escalation
• Backdoor access
• Shoulder surfing

Answer 1

Phishing

Question 2

Which of the following answers refer to smishing? (Select 2 answers):

• Social engineering technique
• Email communication
• Spam over Internet Telephony (SPIT)
• Text messaging
• Spam over Internet Messaging

Answer 2

Social engineering technique
Text messaging

Question 3

The practice of using a telephone system to manipulate user into disclosing confidential information is known as:

• Whaling
• Spear phishing
• Vishing
• Pharming

Answer 3

Vishing

Question 4

Which of the following terms is commonly used to describe an unsolicited advertising message?:

• Spyware
• Adware
• Malware
• Spam

Answer 4

Spam

Question 5

What type of spam relies on text-based communication?:

• Vishing
• SPIM
• Bluesnarfing
• SPIT

Answer 5

SPIM

Question 6

Phishing scams targeting a specific group of people are referred to as:

• Vishing
• Spear phishing
• Spoofing
• Whaling

Answer 6

Spear phishing

Question 7

In computer security, the term “Dumpster diving” is used to describe a practice of sifting through trash for discarded documents containing sensitive data. Found documents containing names and surnames of the employees along with the information about positions held in the company and other data can be used to facilitate social engineering attacks. Having the documents shredded or incinerated before disposal makes dumpster diving less effective and mitigates the risk of social engineering attacks.

True or False

Answer 7

True

Question 8

A situation in which an unauthorized person can view another user’s display or keyboard to learn their password or other confidential information is referred to as:

• Spear phishing
• Tailgating
• Shoulder surfing
• Spoofing

Answer 8

Shoulder surfing

Question 9

Which of the following answers refer to the characteristic features of pharming? (Select 3 answers):

• Domain hijacking
• Traffic redirection
• Fraudulent website
• Password attack
• Credential harvesting

Answer 9

Traffic redirection
Fraudulent website
Credential harvesting

Question 10

What is tailgating?:

• Acquiring unauthorized access to confidential data
• Looking over someone’s shoulder to get information
• Gaining unauthorized access to restricted areas by following another person
• Manipulating a user into disclosing confidential information

Answer 10

Gaining unauthorized access to restricted areas by following another person

Question 11

In social engineering, the term “Elicitation” describes the use of casual conversation to extract non-public information from people without giving them the feeling they are being interrogated.

True or False

Answer 11

True

Question 12

What is Bracketing?

Answer 12

Providing a high and low estimate in order to entice a more specific number

Question 13

What is confidential bait?

Answer 13

Pretending to divulge confidential information in hopes of receiving confidential information in return

Question 14

What do deliberate false statements entail?

Answer 14

Saying something wrong in the hopes that the person will correct the statement with true information

Question 15

What is feined ignorance?

Answer 15

Pretending to be ignorant of a topic in order to exploit the person’s tendency to educate

Question 16

What is denial of the obvious?

Answer 16

Saying something wrong in the hopes that the person will correct the statement with true information

Question 17

What does flattery involve in cyber security?

Answer 17

Using praise to coax a person into providing information

Question 18

Phishing scams targeting people holding high positions in an organization or business are known as:

• Vishing
• Smishing
• Whaling
• Pharming

Answer 18

Whaling

Question 19

Which of the following is used in data URL phishing?:

• Prepending
• Typosquatting
• Pretexting
• Domain hijacking

Answer 19

Prepending

Question 20

An email message containing a warning related to a non-existent computer security threat, asking a user to delete system files falsely identified as malware, and/or prompting them to share the message with others would be an example of:

• Vishing
• Impersonation
• Virus hoax
• Phishing

Answer 20

Virus Hoax

Question 21

Which social engineering attack relies on identity theft?

Answer 21

Impersonation

Question 22

The term “URL hijacking” (a.k.a. “Typosquatting”) refers to a practice of registering misspelled domain name closely resembling other well established and popular domain name in hopes of getting Internet traffic from users who would make errors while typing in the URL in their web browsers.

True or False

Answer 22

True

Question 23

Which of the terms listed below refers to a platform used for watering hole attacks?

• Mail gateways
• Websites
• PBX systems
• Web browsers

Answer 23

Websites

Question 24

An attacker impersonates a company’s managing staff member to manipulate a lower rank employee into disclosing confidential data. The attacker informs the victim that the information is essential for a task that needs to be completed within the business hours on the same day and mentions potential financial losses for the company in case the victim refuses to comply. Which social engineering principles apply to this attack scenario? (Select 3 answers):

• Urgency
• Familiarity
• Authority
• Consensus
• Intimidation
• Scarcity

Answer 24

Urgency
Authority
Intimidation

Question 25

While conducting a web research that would help in making a better purchasing decision, a user visits series of Facebook pages and blogs containing fake reviews and testimonials in favor of a paid app intentionally infected with malware. Which social engineering principle applies to this attack scenario?

Answer 25

Consensus

Question 25

An attacker impersonating a software beta tester replies to a victim’s post in a forum thread discussing the best options for affordable productivity software. A while later, he/she follows up by sending the victim private message mentioning the discussion thread and offering free access to a closed beta version of a fake office app. Which social engineering principles apply to this attack scenario? (Select 3 answers)

• Authority
• Intimidation
• Consensus
• Scarcity
• Familiarity
• Trust
• Urgency

Answer 25

Scarcity
Familiarity
Trust

Question 26

Harmful programs used to disrupt computer operation, gather sensitive information, or gain unauthorized access to computer systems are commonly referred to as:

Answer 26

Malware

Question 27

Malware that restricts access to a computer system by encrypting files or locking the entire system down until the user performs requested action is known as:

Answer 27

Ransomware

Question 28

What is Trojan Horse?

Answer 28

A type of software that performs unwanted and harmful actions in disguise of a legitimate and useful program is known as a Trojan horse. This type of malware may act like a legitimate program and have all the expected functionalities, but apart from that it will also contain a portion of malicious code that the user is unaware of.

Question 29

A standalone malicious computer program that typically propagates itself over a computer network to adversely affect system resources and network bandwidth is called:

Answer 29

Worm

Question 30

What is a PUP? (Potentially Unwanted Program):

• A type of computer program not explicitly classified as malware by AV software
• An application downloaded and installed without the user’s consent
• A type of software that may adversely affect the computer’s security and performance, compromise user’s privacy, or display unsolicited ads
• An application downloaded and installed with the user’s consent
• A type of computer program explicitly classified as malware by AV applications
• A type of free, utility software often bundled with a paid app

Answer 30

A type of computer program not explicitly classified as malware by AV software

A type of software that may adversely affect the computer’s security and performance, compromise user’s privacy, or display unsolicited ads

An application downloaded and installed with the user’s consent

Question 31

What type of malware resides ONLY in RAM?

Answer 31

Fileless Virus

Question 32

What is the function of a C2 Server

Answer 32

Botnet Control

Question 33

A malware-infected network host under remote control of a hacker is commonly referred to as:

Answer 33

Bot

Question 33

Which of the following applies to a collection of intermediary compromised systems that can be used as a platform for a DDoS attack?

• Botnet
• Intranet
• Honeynet
• Extranet

Answer 33

Botnet

Question 34

Which of the following is an example of cryptomalware?:

• Backdoor
• Ransomware
• Keylogger
• Rootkit

Answer 34

Ransomware

Question 34

What is a logic bomb?

Answer 34

Malicious code activated by specific event

Question 34

Explain spyware

Answer 34

Malicious software collecting information about users without their knowledge/consent

Question 35

Which of the following is an example of spyware?:

• Keylogger
• Vulnerability scanner
• Computer worm
• Packet sniffer

Answer 35

Keylogger

Question 36

Which type of Trojan enables unauthorized remote access to a compromised system?

Answer 36

RAT (Remote Access Trojan)

Question 37

A collection of software tools used by a hacker to mask intrusion and obtain administrator-level access to a computer or computer network is known as:

Answer 37

Rootkit

Question 38

Explain backdoor

Answer 38

An undocumented (and often legitimate) way of gaining access to a program, online service, or an entire computer system

Question 39

Which password attack bypasses account-lockout policies?

Answer 39

Spraying attack

Question 39

Which password attack takes advantage of a predefined list of words?

Answer 39

Dictionary attack

Question 39

One of the measures for bypassing the failed logon attempt account lockout policy is to capture any relevant data that might contain the password and brute force it offline.

True or False

Answer 39

True

Question 40

A short list of commonly used passwords tried against large number of user accounts is a characteristic feature of:

Answer 40

Spraying attack

Question 41

What are Rainbow Tables?

Answer 41

Lookup tables used to speed up the process of password guessing

Question 41

An attack against encrypted data that relies heavily on computing power to check all possible keys and passwords until the correct one is found is known as:

Answer 41

Brute-force attack

Question 41

Which of the following refers to the contents of a rainbow table entry?:

• Hash/Password
• IP address/Domain name
• Username/Password
• Account name/Hash

Answer 41

Hash / Password

Question 42

What does ‘Plaintext’ refer to in Cryptography?

Answer 42

Data in unencrypted form

Question 43

The practice of making an unauthorized copy of a payment card is referred to as

Answer 43

Cloning

Question 43

Due to added functionality in its plug, malicious USB cable can be used for:

• GPS tracking
• Capturing keystrokes
• Sending and receiving commands
• Delivering and executing malware
• Any of the above

Answer 43

Any of the above

Question 44

What practice / attack refers to the theft of personal data from a payment card?

Answer 44

Skimming

Question 45

An AI feature that enables it to accomplish tasks based on training data without explicit human instructions is called:

Answer 45

ML (Machine Learning)

Question 45

A situation where a cryptographic hash function produces two different digests for the same data input is referred to as a hash collision.

True or False

Answer 45

False

Question 45

Which cryptographic attack relies on the concepts of probability theory?

Answer 45

Birthday attack

Question 46

What is a downgrade attack?

Answer 46

A type of cryptographic attack that forces a network protocol to revert to its older, less secure version

Question 47

Which of the following facilitate(s) privilege escalation attacks? (Select all that apply):

• System/application vulnerability
• Principle of least authority
• Social engineering techniques
• Mandatory Access Control (MAC)
• System/application misconfiguration

Answer 47

System/application vulnerability

Social engineering techniques

System/application misconfiguration

Question 48

Which of the following answers can be used to describe characteristics of a cross-site scripting attack? (Select 3 answers):

• Exploits the trust a user’s web browser has in a website
• A malicious script is injected into a trusted website
• User’s browser executes attacker’s script
• Exploits the trust a website has in the user’s web browser
• A user is tricked by an attacker into submitting unauthorized web requests
• Website executes attacker’s requests

Answer 48

Exploits the trust a user’s web browser has in a website

A malicious script is injected into a trusted website

User’s browser executes attacker’s script

Question 49

What is DLL (Dynamic Link Library)

Answer 49

Collection of precompiled functions designed to be used by more than one Microsoft Windows application simultaneously to save system resources

Question 49

What application attack relies on executing a library of code?

Answer 49

DLL Injection

Question 50

Which of the following terms describes an attempt to read a variable value from an invalid address?:

• Buffer Overflow
• Null-pointer dereference
• Integer overflow
• Memory leak

Answer 50

Null-pointer dereference

Question 50

What exploit type relies on overwriting contents of memory to cause unpredictable results in an application?

Answer 50

Buffer overflow

Question 51

A situation in which an application writes to an area of memory it is not supposed to have access to is referred to as:

Answer 51

Buffer overflow

Question 51

A malfunction in a preprogrammed sequential access to a shared resource is described as:

Answer 51

Race condition

Question 52

What is a dot-dot-slash attack also referred as?

Answer 52

Directory traversal attack

Question 53

Which of the following terms refers to a vulnerability caused by race conditions?:

• Mean time to failure
• Replay attack
• Mean time between failures
• Time-of-check to Time-of-use

Answer 53

Time-of-check to Time-of-use

Question 53

A situation in which a web form field accepts data other than expected (e.g.- server commands) is an example of:

Answer 53

Improper input validation

Question 53

In a session replay attack, an attacker steals a valid session ID of a user and resends it to the server with the intent of gaining unauthorized access or tricking the server into unauthorized operations.

True or False

Answer 53

True

Question 53

Which type of exploit allows an attacker to take control over a server and use it as a proxy for unauthorised actions?

Answer 53

SSRF (Server-Side Request Forgery)

Question 53

Name the 7 layers of the OSI model

Answer 53

7. Application
8. Presentation
9. Session
10. Transport
11. Network
12. Data link
13. Physical

Question 54

Which of the following answers refers to a countermeasure against code injection?:

• Fuzzing
• Input validation
• Code signing
• Normalisation

Answer 54

Input validation

Question 54

How does a replay attack work?

Answer 54

Network replay attacks occur when attackers intercept sensitive user data and resents it to the receiver with the intent of gaining unauthorised access or tricking the receiver into unauthorised operations

Question 54

What is the purpose of a DoS attack?

Answer 54

Resource exhaustion

Question 54

SSL stripping is an example of (Select 2):

• Brute force attack
• Downgrade attack
• Watering hole attack
• On-path attack
• DoS attack

Answer 54

Downgrade attack
On-path attack

Question 54

Which of the following enables the exchange of information between computer programs?:

• API
• UI
• Device drivers
• SDK

Answer 54

API (Application Programming Interface)

Question 54

A situation in which an application fails to properly release memory allocated to it or continually requests more memory than required is known as:

Answer 54

Memory leak

Question 54

What is Shimming?

Answer 54

Shimming refers to an attack where hackers insert a piece of malicious code, known as a shim, to intercept data and potentially gain control. Once in place, shims can intercept API calls, modify information, and open backdoors for attackers.

Question 54

Which of the following alters the external behaviour of an application and at the same time does not introduce any changes to the application’s code?:

• Shimming
• Refactoring
• API call
• Sideloading

Answer 54

Shimming

Question 54

Which of the programming aspects listed below are critical in secure application development process? (Select 2 answers):

• Patch management
• Input validation
• Password protection
• Error and exception handling
• Application whitelisting

Answer 54

Input validation
Error and exception handling

Question 54

Which of the following are characteristic of session IDs? (Select 3):

• Stored on a server
• A unique identifier assigned by the website to a specific user
• Contains user’s authentication credentials
• A piece of data that can be stored in a cookie or embedded as a URL parameter
• Stored in a visitor’s browser
• A unique identifier assigned to a server

Answer 54

A unique identifier assigned by the website to a specific user

A piece of data that can be stored in a cookie or embedded as a URL parameter

Stored in a visitor’s browser

Question 55

Which of the terms listed below describes a programming error where an application tries to store a numeric value in a variable that is too small to hold it?:

• Buffer overflow
• Pointer dereference
• Memory leak
• Integer overflow

Answer 55

Integer overflow

Question 55

How do SSL stripping attacks work? List 3 ways

Answer 55

Proxy servers
ARP (Address Resolution Protocol) Spoofing
Network access

Question 55

Which of the following can be used to describe the characteristics of a XSRF attack?:

• Exploits the trust a website has in the user’s web browser
• A user is tricked by an attacker into submitting unauthorized web requests
• Website executes attacker’s requests
• Exploits the trust a user’s web browser has in a website
• A malicious script is injected into a trusted website
• User’s browser executes attacker’s script

Answer 55

Exploits the trust a website has in the user’s web browser

A user is tricked by an attacker into submitting unauthorized web requests

Website executes attacker’s requests

Question 55

What is the practice of modifying an application’s code without changing its external behaviour?

Answer 55

Refactoring

Question 56

Which of the following terms refer to software/hardware driver manipulation techniques? (Select 2):

• Prepending
• Fuzz testing
• Refactoring
• Shimming
• Sideloading

Answer 56

Refactoring
Shimming

Question 56

The term “Evil twin” refers to a rogue Wireless Access Point (WAP) set up for eavesdropping or stealing sensitive user data. Evil twin replaces the legitimate access point and by advertising its own presence with the same Service Set Identifier (SSID, a.k.a. network name) appears as a legitimate access point to connecting hosts.

True or False

Answer 56

True

Question 57

A technique that allows an attacker to authenticate to a remote server without extracting cleartext password from a digest is called:

Answer 57

Pass the hash

Question 57

The practice of sending unsolicited messages over Bluetooth is known as:

Answer 57

Bluejacking

Question 57

A wireless disassociation attack is a type of ___ (Select 2):

• Cryptographic attack
• Downgrade attack
• Deauthentication attack
• Brute-force attack
• DoS attack

Answer 57

Deauthentication attack
DoS attack

Question 58

What is a wireless disassociation attack?

Answer 58

An attack that targets the 802.11 Wi-Fi protocol. Involves sending forged deauthentication frames to a WAP or client device, causing the device to disconnect from the network.

Question 58

What is the name of a technology that is used for contactless payment transactions?

Answer 58

NFC (Near-field Communication)

Question 58

Gaining unauthorized access to a Bluetooth device is referred to as:

Answer 58

Bluesnarfing

Question 59

NFC is vulnerable to:

• Data interception
• Replay attacks
• DoS attacks
• All of the above

Answer 59

All of the above

Question 59

What is a type of identification badge that can be held within a certain distance of a reader device to authenticate its holder called:

Answer 59

RFID Badge

Question 59

A wireless jamming attack is a type of:

Answer 59

DoS attack

Question 59

Which of the following provides randomisation during encryption processes? (Select 2):

• Salting
• Rainbow tables
• Obfuscation
• Initialisation Vector (IV)
• Shimming

Answer 59

Salting
Initialisation Vector (IV)

Question 59

RFID is vulnerable to:

• Spoofing
• Eavesdropping
• Data interception
• Replay attacks
• DoS attacks
• All of the above

Answer 59

All of the above

Question 59

Which of the following statements outline the characteristics of an on-path attack?:

• Also known as a MITM attack
• Attackers place themselves on the comms route between two devices
• Attackers intercept or modify packets sent between 2 communicating devices
• Attackers do not have access to packets exchanged during the communication between 2 devices
• Attackers generate forged packets and inject them in the network

Answer 59

Also known as a MITM attack

Attackers place themselves on the comms route between two devices

Attackers intercept or modify packets sent between 2 communicating devices

Question 60

What wireless technologies enable the identification and tracking of tags attached to objects?

Answer 60

RFID

Question 61

An attacker managed to associate his/her MAC address with the IP address of the default gateway. In result, a targeted host is sending network traffic to the attacker’s IP address instead of the IP address of the default gateway. Based on the given info, which type of attack is taking place in this scenario?

Answer 61

XSRF (Cross-Site Request Forgery)

Question 61

Media Access Control (MAC) flooding is a network attack that compromises the security of a network switch by overflowing its memory used to store the MAC address table.

True or False

Answer 61

True

Question 62

Remapping a domain name to a rogue IP address is an example of what kind of exploit?

Answer 62

DNS poisoning

Question 62

URL redirection is characteristic of what

Answer 62

Pharming

Question 63

Which of the following fall(s) into the category of Layer 2 attacks? (Select all that apply):

• MAC cloning
• ARP poisoning
• MAC flooding
• DNS poisoning
• MAC spoofing

Answer 63

MAC cloning

ARP poisoning

MAC flooding

MAC spoofing

Question 64

The term “Domain hijacking” refers to a situation in which domain registrants due to unlawful actions of third parties lose control over their domain names.

True or false

Answer 64

True

Question 64

An attack that relies on altering the burned-in address of a NIC to assume the identity of a different network host is known as (Select 2 answers):

• ARP poisoning
• On-path attack
• MAC spoofing
• Replay attack
• MAC cloning

Answer 64

MAC spoofing
MAC cloning

Question 64

Remapping domain names to rogue IP addresses is an example of what kind of exploit?

Answer 64

DNS Poisoning

Question 64

What is URL redirection a characteristic feature of?

Answer 64

Pharming

Question 65

Which of the following enables client-side URL redirection?:

• host
• hosts
• hostname
• localhost

Answer 65

hosts

Question 66

Which of the following factors has the biggest impact on domain reputation?:

• Domain age
• Missing SSL certificate
• Derivative content
• Bounce rate
• Distribution of spam

Answer 66

Distribution of spam

Question 67

As opposed to the simple Denial of Service (DoS) attacks that usually are performed from a single system, a Distributed Denial of Service (DDoS) attack uses multiple compromised computer systems to perform the attack against its target. The intermediary systems that are used as platform for the attack are the secondary victims of the DDoS attack; they are often referred to as zombies, and collectively as a botnet.

True or false

Answer 67

True

Question 68

What is the most common form of a DDoS attack?

Answer 68

Network-based

Question 69

Which type of DDoS attack targets industrial equipment and infrastructure?

Answer 69

OT (Operational Technology)

Question 70

What filename extension is used in cross-platform, general-purpose programming language?

Answer 70

.py

Question 71

What filename extension is Microsoft PowerShell script file?

Answer 71

.ps1

Question 71

Which of the following enables running macros in Microsoft Office applications?:

• DOM (Document Object Model)
• VBA (Visual Basic for Applications)
• SDK (Software Development Kit)
• RAD (Rapid Application Development)

Answer 71

VBA

Question 72

What script file type is designed to be run in Unix command line?

Answer 72

sh

Question 73

What is the filename extension used scripting language based on Microsoft’s Visual Basic programming language?

Answer 73

.vbs

Question 74

Which statements best describe the attributes of an APT? (Select 3 answers):

• Lack of extensive resources/funding
• High level of technical sophistication
• Extensive amount of resources/funding
• Threat actors are individuals
• Low level of technical sophistication
• Typically funded by governments/nation states

Answer 74

High level of technical sophistication

Extensive amount of resources/funding

Typically funded by governments/nation states

Question 74

What do you call a person who breaks into a computer network or system for a politically or socially motivated purpose?

Answer 74

Hacktivist

Question 75

Which statements best describe the attributes of a script kiddie? (Select 2 answers):

• Motivated by money
• Low level of technical sophistication
• Motivated by ideology
• High level of technical sophistication
• Lack of extensive resources / funding

Answer 75

Low level of technical sophistication

Lack of extensive resources / funding

Question 75

What term best describes a disgruntled employee abusing legitimate access to company’s internal resources?

Answer 75

Insider Threat

Question 76

Which of the following statements does not match a typical description of nation states or state-funded groups identified as threat actors?:

• Political or economic motivation
• High level of technical sophistication
• Advanced Persistent Threat (APT)
• High level of resources/funding
• Typically classified as an internal threat

Answer 76

Typically classified as an internal threat

Question 77

What term best describes threat actors whose sole intent behind breaking into a computer system or network is monetary gain?

Answer 77

Criminal syndicates

Question 78

Which of the following terms fall into the category of authorized hacking activities? (Select 2 answers):

• Black hat
• Gray hat
• White hat
• Blue hat
• Green hat

Answer 78

White hat
Blue hat

Question 79

Which of the following terms falls into the category of unauthorised hacking activities?:

• Black hat
• Gray hat
• White hat
• Blue hat

Answer 79

Black hat

Question 80

Which of the following terms falls into the category of semi-authorised hacking activities?:

• Blue hat
• Black hat
• Gray hat
• White hat

Answer 80

Gray hat

Question 81

In IT security, the term “Shadow IT” is used to describe software and hardware used within an organization, but outside of the organization’s official IT infrastructure.

True or false

Answer 81

True

Question 82

What term best describes threat actors that engage in illegal activities to get the know-how and gain market advantage?

Answer 82

Competitors

Question 83

Which of the following answers does not relate to a direct access threat vector?:

• Malicious USB cable
• Backdoor
• Malicious URL
• Lack of physical security controls
• Malicious flash drive

Answer 83

Malicious URL

Question 84

Which of the following answers refer(s) to wireless threat vector(s)? (Select all that apply):

• Network protocol vulnerabilities (WEP/WPA)
• Rogue AP / Evil twin
• Default security configurations
• Malicious email attachments
• Vulnerabilities in network security standards (WPS)

Answer 84

Network protocol vulnerabilities (WEP/WPA)

Rogue AP / Evil twin

Default security configurations

Vulnerabilities in network security standards (WPS)