Practice Test 8

Question 1

Which functionality allows a DLP system to fulfill its role?

Motion detection
Environmental monitoring
Content inspection
Loop protection

Answer 1

Content inspection

Question 2

Which of the answers listed below refer(s) to security solution(s) that can be implemented as a function of a DLP system? (Select all that apply)

USB blocking
Virtualization
Email monitoring
Directory services
Cloud-based security

Answer 2

USB blocking
Email monitoring
Cloud-based security

Question 3

A type of computer security solution that allows to define and enforce network access policies is known as:

NAC
NIDS
NFC
NAT

Answer 3

NAC

Network Access Control (NAC) is an approach to computer security that attempts to unify endpoint security technology (such as antivirus, host intrusion prevention, and vulnerability assessment), user or system authentication and network security enforcement.

Question 4

Which of the following answers refer to the implementations of NAC? (Select 2 answers)

IPsec
MAC filter
BYOD
802.1X
HIDS/HIPS

Answer 4

MAC filter

802.1X

Question 5

A company’s security policy requires all employee devices to have a software installed that would run as a background service on each device and perform host security health checks before granting/denying it access to the corporate intranet. Based on the given description, which of the answers listed below can be used to describe the software’s features? (Select 2 answers)

Agentless
Dissolvable
Agent-based
Permanent

Answer 5

Agent-based

Permanent

Question 6

What type of security measures can be implemented on an MX gateway? (Select all that apply)

Encryption
Security guards
DLP
Motion detection
Spam filter

Answer 6

Encryption
DLP
Spam filter

Data loss prevention(DLP) is a strategy for making sure that end users do not send sensitive or critical information outside the corporate network. The term is also used to describe software products that help a network administrator control what data end users can transfer.

Question 7

What type of device would be the most convenient for interconnecting two or more physically separated network segments?

Wireless bridge
Layer 3 switch
Wireless Access Point (WAP)
Cable modem

Answer 7

Wireless bridge

Question 8

SSL/TLS accelerators are used to decode secure communication links for the purpose of content inspection.

True
False

Answer 8

False

Question 9

An SSL decryptor card is a type of dedicated hardware device that improves performance of a server by taking over computational tasks related to handling of encrypted network traffic.

True
False

Answer 9

False

Question 10

A type of device that translates data between different communication formats is called:

Multilayer switch
Media gateway
Protocol analyzer
Media converter

Answer 10

Media gateway

Question 11

Which of the answers listed below refers to a piece of hardware and associated software/firmware designed to provide cryptographic functions?

HSM
EFS
STP
WAF

Answer 11

HSM

A hardware security module (HSM) is a physical computing device that safeguards and manages digital keys for strong authentication and provides cryptoprocessing. These modules traditionally come in the form of a plug-in card or an external device that attaches directly to a computer or network server.

Question 12

A software tool used for capturing and examining contents of the network traffic is known as:

Port scanner
Honeypot
Protocol analyzer
Vulnerability scanner

Answer 12

Protocol analyzer

Question 13

Which of the following is a GUI packet sniffer?

pfSense
Nmap
tcpdump
Wireshark

Answer 13

Wireshark

Question 14

Which of the following is a CLI packet sniffer?

Nmap
tcpdump
OpenVAS
Wireshark

Answer 14

tcpdump

Question 15

What is Nmap?

Network scanner
Exploitation framework
Protocol analyzer
Password cracker

Answer 15

Network scanner

Question 16

Which of the tools listed below would be used to detect a rogue AP?

HIDS
Vulnerability scanner
Packet sniffer
Wireless scanner

Answer 16

Wireless scanner

Question 17

Which of the following tools would be used to perform a site survey?

pfSense
Wireless scanner
OpenVAS
Nmap

Answer 17

Wireless scanner

Question 18

Examples of password cracking software include: (Select 2 answers)

Security Onion
John the Ripper
Cain & Abel
Back Orifice
tcpdump

Answer 18

John the Ripper

Cain & Abel

Question 19

Which of the tools listed below offers the functionality of a vulnerability scanner?

Roo
OpenVAS
Wireshark
pfSense

Answer 19

OpenVAS

Question 20

Which of the following tools offers the functionality of a configuration compliance scanner?

Zenmap
Roo
Nessus
DBAN

Answer 20

Nessus

Question 21

Which of the answers listed below is an example of exploitation framework?

tcpdump
Metasploit
Security Onion
OpenVAS

Answer 21

Metasploit

Question 22

What is the name of a Linux distribution commonly used as a target system for practicing penetration testing techniques?

Kali Linux
Debian
Metasploitable
Red Hat
SELinux (Your answer)

Answer 22

Metasploitable

Question 23

Which of the terms listed below refers to a method for permanent and irreversible removal of data stored on a memory device?

Sanitization
High-level formatting
Recycle Bin (MS Windows)
Partitioning

Answer 23

Sanitization

Question 24

What is the purpose of steganography?

Checking data integrity
Calculating hash values
Hiding data within another piece of data
Data encryption

Answer 24

Hiding data within another piece of data

Question 25

A monitored host containing no valuable data specifically designed to detect unauthorized access attempts is known as:

UTM appliance
Trojan horse
Captive portal
Honeypot

Answer 25

Honeypot