Section 6

Question 1

Which type of intrusion detection system (IDS) is used to analyze activities on the network interface of a particular asset?

Answer 1

host based

Question 2

Nmap

Answer 2

used for port scanning, discovering devices, and searching for hosts on a network. It is an important tool to help identify and remove unessential services when hardening an operating system.

Question 3

What is used to prevent buffer overflow?

Answer 3

bounds checking

Question 4

Which type of vulnerability is present when multiple threads within a process control access to a particular resource?

Answer 4

race condition
- the correct handling depends on timing or transactions.

Question 5

Which type of attack occurs when certain print functions within a programming language are used to manipulate and view the internal memory of an application?

Answer 5

format string

Question 6

Which type of attack is an example of an input validation attack?

Answer 6

format string

Question 7

When should updates be performed?

Answer 7

after testing and vetting

Question 8

Which port service needs to be removed when running a webserver?

Answer 8

Port 53 is typically blocked on webservers to prevent Domain Name System (DNS) servers from divulging critical information to attackers.

Question 9

Which action is considered a significant event that should be included in the logging process?

Answer 9

administrative privilege

Question 10

Which buffer size creates an entry point for a cyberattack when the buffer reaches 8 bytes?

Answer 10

4 bytes

Question 11

What is core impact?

Answer 11

a centralized penetration testing tool that enables security teams to conduct advanced, multi-phased penetration tests. It is a type of tool categorized as an exploit framework. Exploit frameworks include pre-packaged sets of exploits

Question 12

Which symmetric encryption algorithm is the standard encryption algorithm used by the US Federal government?

Answer 12

AES

Question 13

Which type of attack is a client-side attack?

Answer 13

click jacking

Question 14

Burp Suite

Answer 14

a web assessment and analysis tool that looks for issues on websites such as cross-site scripting or SQL injection flaws.

Question 15

Which type of analysis tool attacks applications with inputs from a wide variety of sources in the hope that the application will fail or perform in unexpected ways?

Answer 15

Fuzzer
- a tool that bombards applications with all manner of data and inputs from a wide variety of sources, in the hope that the application will fail or perform in unexpected ways.

Question 16

An organization is seeking to implement a solution that unifies control of all devices from a central location. Which solution should the organization implement?

Answer 16

mobile device management

Question 17

What should a company do to prevent jailbreaking on a mobile device?

Answer 17

Attaching an external management solution to a mobile device can stop jailbreaking, as it installs its own apps to provide additional security layers on the device.

Question 18

vulnerability assessment tools

Answer 18

Qualys and Nessus

Question 19

Pen. testing steps

Answer 19

○ Scoping
○ Reconnaissance
○ Discovery
○ Exploitation
○ Reporting

Question 20

A management team comes to agreement on what will be tested across the organization. Which phase of the pen testing process is the management team engaging in?

Answer 20

scoping