Quiz 13

Question 1

What process does a penetration tester rely on to access an ever-higher level of resources?

continuous exploitation
persistence
pivot
spinning

Answer 1

persistence

Question 2

Which item below is the standard security checklist against which systems are evaluated for a security posture?

baseline
control
profile
threat

Answer 2

baseline

Question 3

Which is the term for a computer typically located in an area with limited security and loaded with software and data files that appear to be authentic, yet they are imitations of real data files?

honeypot
honeynet
honeycomb
port scanner

Answer 3

honeypot

Question 4

Vulnerability scanning should be conducted on existing systems and particularly as new technology equipment is deployed.
True
False

Answer 4

True

Question 5

In white box and gray box testing, the first task of the tester is to perform preliminary information gathering on their own from outside the organization, sometimes called open source intelligence (OSINT).

True
False

Answer 5

False

Question 6

The second step in a vulnerability assessment is to determine the assets that need to be protected.
True
False

Answer 6

False

Question 7

Netstat displays all current TCP/IP network configuration values and refreshes Dynamic Host Configuration Protocol (DHCP) and DNS settings.
True
False

Answer 7

False

Question 8

What type of penetration testing technique is used if the tester has no prior knowledge of the network infrastructure that is being tested?
black box
gray box
white box
sealed box

Answer 8

black box

Question 9

Select the vulnerability scan type that will use only the available information to hypothesize the status of the vulnerability.
active
intrusive
passive
non-intrusive

Answer 9

non-intrusive

Question 10

Which tester has an in-depth knowledge of the network and systems being tested, including network diagrams, IP addresses, and even the source code of custom applications?
white box
replay
system
black box

Answer 10

white box

Question 11

What type of reconnaissance is a penetration tester performing if they are using tools that do not raise any alarms?
active
invasive
passive
evasive

Answer 11

passive

Question 12

What process addresses how long data must be kept and how it is to be secured?

legal and compliance
data methodology
legal retention
data retention

Answer 12

data retention

Question 13

The goal of what type of threat evaluation is to better understand who the attackers are, why they attack, and what types of attacks might occur?
threat mitigation
threat profiling
threat modeling
risk modeling

Answer 13

threat modeling

Question 14

Which data erasing method will permanently destroy a magnetic-based hard disk by reducing or eliminating the magnetic field?
wiping
degaussing
purging
data sanitation

Answer 14

degaussing

Question 15

What term is defined as the state or condition of being free from public attention to the degree that you determine?
privacy
secure
contentment
freedom

Answer 15

privacy

Question 16

An administrator needs to view packets and decode and analyze their contents. What type of application should the administrator use?
protocol analyzer
system analyzer
application analyzer
threat profiler

Answer 16

protocol analyzer

Question 17

Nslookup displays detailed information about how a device is communicating with other network devices.
True
False

Answer 17

False

Question 18

Which scan examines the current security, using a passive method?
threat scan
vulnerability scan
system scan
application scan

Answer 18

vulnerability scan

Question 19

Realistically, risks can never be entirely eliminated.
True
False

Answer 19

True

Question 20

Which of the following groups categorize the risks associated with the use of private data? (Choose all that apply.)
Private and consumer data.
Individual inconveniences and identity theft.
Associations with groups.
Statistical inferences.

Answer 20

Individual inconveniences and identity theft.

Associations with groups.

Statistical inferences.

Question 21

What security goal do the following common controls address: hashing, digital signatures, certificates, nonrepudiation tools?
confidentiality
safety
integrity
availability

Answer 21

integrity

Question 22

What is another term used for a security weakness?
vulnerability
risk
opportunity
threat

Answer 22

vulnerability

Question 23

A port in what state below implies that an application or service assigned to that port is listening for any instructions?
empty port
interruptible system
closed port
open port

Answer 23

open port

Question 24

A risk management assessment is a systematic and methodical evaluation of the security posture of the enterprise.
True
False

Answer 24

False

Question 25

Which item below is the standard security checklist against which systems are evaluated for a security posture? baseline control profile threat

Answer 25

baseline

Question 26

What is the name of the process that basically takes a snapshot of the current security of an organization? threat assessment threat analysis risk assessment vulnerability appraisal

Answer 26

vulnerability appraisal

Question 27

An administrator running a port scan wants to ensure that no processes are listening on port 23. What state should the port be in? secure port closed port open port hardened port

Answer 27

closed port

Question 28

What security goal do the following common controls address: Redundancy, fault tolerance, and patching? integrity availability confidentiality safety

Answer 28

availability

Question 29

What is the end result of a penetration test? penetration test profile penetration test view penetration test system penetration test report

Answer 29

penetration test report

Question 30

What type of scanner sends "probes" to network devices and examines the responses received back to evaluate whether a specific device needs remediation? non-intrusive passive active intrusive

Answer 30

active

Question 31

Which of the following is used to replicate attacks during a vulnerability assessment by providing a structure of exploits and monitoring tools? assessment image replication image exploitation framework penetration framework

Answer 31

exploitation framework

Question 32

TCP/IP uses a numeric value as an identifier to the applications and services on these systems. True False

Answer 32

True

Question 33

Which of the following are the goals of a vulnerability scan? (Choose all that apply.) identify a lack of security controls identify vulnerabilities identify common misconfigurations identify threat actors

Answer 33

identify a lack of security controls identify vulnerabilities identify common misconfigurations

Question 34

If a penetration tester has gained access to a network and then tries to move around inside the network to other resources, what procedure is the tester performing? persistence secondary exploitation pivot spinning

Answer 34

pivot

Question 35

What is the term for a network set up with intentional vulnerabilities? honeycomb honeypot honey hole honeynet

Answer 35

honeynet

Question 36

If a user uses the operating system's "delete" command to erase data, what type of data removal procedure was used? degaussing data sanitation wiping purging

Answer 36

purging

Question 37

Each packet/datagram contains a source port and destination port. True False

Answer 37

True

Question 38

During a vulnerability assessment, what type of software can be used to search a system for port vulnerabilities? application profiler port scanner vulnerability profiler threat scanner

Answer 38

port scanner

Question 39

Determining vulnerabilities often depends on the background and experience of the assessor. True False

Answer 39

True

Question 40

What process does a penetration tester rely on to access an ever-higher level of resources? continuous exploitation persistence pivot spinning

Answer 40

persistence

Question 41

Which security procedure is being demonstrated if an administrator is using Wireshark to watch for specific inbound and outbound traffic? virus control firewall monitoring application control application search

Answer 41

firewall monitoring

Question 42

Which of the following is a valid data sensitivity labeling and handling category? (Choose all that apply.) proprietary confidential personal health information high-risk

Answer 42

proprietary confidential

Question 43

What security goal do the following common controls address: Redundancy, fault tolerance, and patching.? confidentiality integrity availability safety

Answer 43

availability