Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

SECURITY+ EXAM > Test 17 > Flashcards

Test 17 Flashcards

1
Q

Which of the following statements describe the features of dynamic code analysis? (Select 3 answers)

A

Typically used later in the software development lifecycle
Analyzes runtime properties like memory usage, performance, and error handling to identify issues such as memory leaks, performance bottlenecks, and runtime errors
Involves executing the code and analyzing its behavior at runtime

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Which of the terms listed below refers to tracking and managing software application components, such as third-party libraries and other dependencies?

A

Package monitoring

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Which of the following terms refers to threat intelligence gathered from publicly available sources?

A

OSINT

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Which of the terms listed below refers to a US government initiative for real-time sharing of cyber threat indicators?

A

AIS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is STIX?

A

Common language for describing cyber threat information

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

A dedicated transport mechanism for cyber threat information is called:

A

TAXII

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Which of the following provides insights into the methods and tools used by cybercriminals to carry out attacks?

A

TTP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which of the following statements does not apply to dark web?

A

You left the correct answer unselected.
Forms a large part of the deep web

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Penetration testing: (Select all that apply)

A

Bypasses security controls ( Missed)
Actively tests security controls ( Missed)
Exploits vulnerabilities

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

A responsible disclosure program is a formal process established by an organization to encourage security researchers and ethical hackers to report vulnerabilities they discover in the organization’s systems or software. A bug bounty program is a specific type of responsible disclosure program that offers financial rewards to security researchers for reporting valid vulnerabilities.

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

An antivirus software identifying non-malicious file as a virus due to faulty virus signature file is an example of:

A

False positive error

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Which of the answers listed below refers to a situation where no alarm is raised when an attack has taken place?

A

False negative

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

A measure of the likelihood that a security system will incorrectly reject an access attempt by an authorized user is referred to as:

A

FRR

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which of the following terms refers to a framework and knowledge base that provides understanding of TTPs used during cyberattacks?

A

ATT&CK

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Which of the answers listed below refers to an industry standard for assessing and scoring the severity of computer system security vulnerabilities?

A

CVSS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Which of the following refers to a system that identifies, defines, and catalogs publicly known cybersecurity vulnerabilities?

A

CVE

17
Q

What is Exposure Factor (EF) in vulnerability analysis?

A

The degree of loss that a realized threat would have on a specific asset

18
Q

Which of the statements listed below does not refer to a vulnerability response and remediation technique?

A

Applying updates or fixes provided by software vendors to address the vulnerability (patching)
Ensuring financial recovery from the costs associated with a successful cyberattack (insurance)
Dividing a network into smaller, isolated zones to limit the potential impact of a vulnerability (segmentation)
Mitigating the risk associated with a vulnerability that cannot be immediately patched by implementing alternative security measures (compensating controls)
Delaying or forgoing a patch for a specific system, e.g., when applying a patch may not be feasible due to compatibility issues or potential disruptions to critical systems (exceptions and exemptions)

19
Q

The practice of isolating potentially malicious or suspicious entities to prevent them from causing harm to the rest of the network or system is known as:

A

Quarantine

20
Q

Which of the following answers refer to SCAP? (Select 3 answers)

A

A collection of standards developed by NIST ( Missed)
Provides a common language for communicating security information ( Missed)
Allows different security tools to share data and work together more effectively

21
Q

Which of the answers listed below refer to SIEM? (Select 3 answers)

A

Designed to provide a centralized user interface for accessing collected data ( Missed)

Enables real-time threat detection, incident response, and compliance monitoring ( Missed)
A type of security system designed to collect logs and events from various sources

22
Q

Which of the following acronyms refers to software or hardware-based security solutions designed to detect and prevent unauthorized use and transmission of confidential information?

A

DLP

23
Q

Simple Network Management Protocol (SNMP) is a UDP-based, application layer protocol used in network management systems to monitor network-attached devices. SNMP is typically integrated into most modern network infrastructure devices such as routers, bridges, switches, servers, printers, copiers, fax machines, and other network-attached devices. An SNMP-managed network comprises three essential components: a managed device, a network-management software module that resides on a managed device (Agent), and a Network Management Station (NMS), which runs applications responsible for monitoring and controlling managed devices, as well as collecting SNMP information from Agents. The manager receives notifications (Traps and InformRequests) on UDP port 162, while the SNMP Agent receives requests on UDP port 161.

A

True

24
Q

An SNMP-compliant device includes a virtual database containing information about configuration and state of the device that can be queried by an SNMP management station. This type of data repository is referred to as:

A

MIB

25
Q

Of the three existing versions of the Simple Network Management Protocol (SNMP), versions 1 and 2 (SNMPv1 and SNMPv2) offer authentication based on community strings sent in an unencrypted form (a.k.a. cleartext). SNMPv3 provides packet encryption, authentication, and hashing mechanisms that allow for checking whether data has changed in transit.

A

True

SECURITY+ EXAM (18 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions