Test ?'s 1

Question 1

What are Opal’s security features?

Answer 1

Disk encryption

Question 2

What secure development practices should developers not neglect when creating a new application?

Answer 2

Error handling, Input Validation, and proper authentication and authorization

Question 3

Which attack could overwhelm a network by targeting vulnerabilities in the headers of specific application protocols?

Answer 3

DNS amplification attack

Question 4

A group of junior systems administrators participates in an ethical hacking seminar that allows for advancement and rewards for completing challenges. Which training methods do the administrators experience?

Answer 4

Gamification and Capture the Flag

Question 5

Which is TRUE about false negatives in relation to vulnerability scanning tools?

Answer 5

It is a high risk and it is not identified

Question 6

What disadvantages could password lockouts create for an organization?

Answer 6

Increases workload for security management and becomes vulnerable to DoS Attacks

Question 7

An attacker evaded antivirus detection in a Linux kernel, as multiple threads attempted to write an object at the same memory location. What type of vulnerability did the attacker use?

Answer 7

A Race Condition

Question 8

Developers working on a project discover that dead code in the application had been executed as a result of which practice?

Answer 8

Code Reuse

Question 9

Which principles should be included in a web server hardening class?

Answer 9

Use the configuration templates provided, Use SSH when uploading files, and secure a guest account.

Question 10

What’s the difference between a playbook and a runbook?

Answer 10

A playbook is a checklist of actions while a runbook automates steps of a playbook.

Question 11

A piece of data that may or may not be relevant to the investigation or incident response such as registry keys, files, time stamps, and event logs are known as what?

Answer 11

Artifacts

Question 12

Which of the following are common constraints of embedded systems?

Answer 12

Cryptography capability, Network range, and Compute power

Question 13

What control type do the administrators implement when relying on ACLs (Access Control Lists)?

Answer 13

Preventative control

Question 14

What command line tools can identify misconfigured DNS servers?

Answer 14

Nslookup and dig

Question 15

What secure options can a web administrator implement on a web servers response header?

Answer 15

Cache control, Content Security Policy (CSP), and HTTP Strict Transport Security (HSTS)

Question 16

Flow analyzers, such as IPFix and Netflow, generate what?

Answer 16

Flow records, such as history of traffic flow, including timestamps and IP addresses.

Question 17

Which technology can be used when skimming credit cards through smart phones?

Answer 17

Near Field Communications (NFC)

Question 18

Which configuration management strategies would BEST help a team lead explain a complex IT infrastructure?

Answer 18

Diagrams

Question 19

Which of the following practices would help mitigate the oversight of applying coding techniques that will secure the code of an internal application for a company?

Answer 19

Static code analysis

Question 20

In which environment can multiple developers check out software code and include change management processes?

Answer 20

Development

Question 21

In what way does Challenge Handshake Authentication Protocol (CHAP) protect against replay attacks?

Answer 21

The handshake is repeated with different challenge messages periodically throughout the session connection.

Question 22

What type of strategy is a blackhole?

Answer 22

Isolation and Containment

Question 23

How can a security team best circumvent the hacking technique when hackers use resources to trigger a diversion just distract threat hunters while another attack is initiated?

Answer 23

Use a defensive maneuver so that threat actors do not know they have been discovered.

Question 24

What is UAV (unmanned aerial vehicle)?

Answer 24

An unmanned aerial vehicle (UAV), or drone, provides a vector a popular social engineering technique that drops infected USB media around college campuses. UAVs are also used for war flying.

Question 25

How would an attacker maliciously reconfigure a recorded task on an Excel workbook?

Answer 25

Using macro commands

Question 26

Which approach would an admin implement when needing to separate network resources on a departmental level across hardware and software devices?

Answer 26

Create VLANS

Question 27

Which protocol provides encryption for call data?

Answer 27

Secure Real-time Transport Protocol (SRTP)

Question 28

What is the “Evil Twin” in regards to rogue access points?

Answer 28

A rogue WAP masquerading as a legitimate one is called an evil twin. An evil twin might just have a similar name (SSID) to the legitimate one.

Question 29

A threat actor is using which of the following techniques to circumvent the usual authentication method to a remote host?

Answer 29

A backdoor

Question 30

Which of the following redundancy solutions best meets failover requirements?

Answer 30

Geographical dispersal is a failover consideration that replicates data in hot and warm sites physically distanced from one another in the event of a catastrophe.

Question 31

What controls is a delivery manager addressing when adding a configuration management plan, a failover plan, and a risk assessment to a program’s documentation inventory

Answer 31

Response and recovery

Question 32

What is a memorandum of understanding (MOU)?

Answer 32

A memorandum of understanding (MOU) is a preliminary or exploratory agreement to express an intent to work together. MOUs are usually intended to be relatively informal and not to act as binding contracts.

Question 33

What does a basic installation of a web server require to allow unauthenticated access?

Answer 33

Guest account

Question 34

Which type of network attack involves asserting the use of an arbitrary hardware address onto a network interface card (NIC)?

Answer 34

MAC Cloning

Question 35

Describe a black box strategy

Answer 35

In a black box environment, the pen tester is given no privileged information about the network. This type of test is useful for simulating the behavior of an external.

Question 36

An IT department implements a software tool between the company’s network and the cloud provider to monitor network traffic and enforce security policies. What software tool was implemented?

Answer 36

A Cloud access security broker (CASB)

Question 37

How is it possible that a website can read the location of an uploaded picture?

Answer 37

Geolocation and GPS tagging

Question 38

Which of the following attacks would allow an attacker to sniff all traffic on a switched network?

Answer 38

Address Resolution Protocol (ARP) poisoning

Question 39

A risk management implementation begins with which of the following characteristics?

Answer 39

Classification, Prioritization, and and Identification

Question 40

Which control types does a systems engineer implement when an initial locking mechanism does not perform as expected?

Answer 40

Compensating and Preventative