Test Study 7

Question 1

What provides fundamental knowledge and definitions?

Answer 1

Education

Question 2

What provides tactical knowledge necessary for a job or task?

Answer 2

Training

Question 3

What imparts sensitivity or importance to a topic?

Answer 3

Awareness

Question 4

What incorporates people into the culture of the organization?

Answer 4

Indoctrination

Question 5

What form of learning should be used if the person has no experience with the tools or job?

Answer 5

Education

Question 6

What form of learning should be used if the person has experience in similar positions or with similar tools?

Answer 6

Training

Question 7

What form of learning should be used if the person isn’t working well within the organization?

Answer 7

Indoctrination

Question 8

What is COBIT?

Answer 8

A risk management framework initially conceived to assist with financial and IT auditing, from ISACA

Question 9

Which risk management framework was initially conceived to assist with financial and IT auditing?

Answer 9

COBIT

Question 10

What is DEP?

Answer 10

Data Execution Prevention

Monitors programs to ensure they are using system memory safely

Question 11

What is ASLR?

Answer 11

Address space layout randomization
Randomly arranges the address space of key data areas to make it more difficult to exploit memory corruption vulnerabilities.

Question 12

What are some protections against memory exploits?

Answer 12

DEP and ASLR

Question 13

A rogue network has been created, but has no access point. What mode is it in?

Answer 13

Ad Hoc

Question 14

A rogue network has been created and it has an access point. What mode is it in?

Answer 14

Infrastructure

Question 15

What are the CATs and their speeds?

Answer 15

Cat 3 - voice grade, 10 Mb/s
Cat 4 - 16 Mb/s, token ring
Cat 5e - 1Gb / 1000BASE-T, 100m
Cat 6 - 10 GB / 10 GBASE-T, 55m
Cat 7 - 10 GB / 10 GBASE-T, 100M or 100 GBASE-T 50m

Question 16

Which CAT cable minimum should function at 10 Gb/s at 60m?

Answer 16

CAT 7

Question 17

Which CAT cable was primarily used in token ring?

Answer 17

CAT 4

Question 18

Which CAT cable minimum should carry 10 Gb/s for 30m?

Answer 18

Cat 6

Question 19

What are the dynamic, well known, and registered port ranges?

Answer 19

Well known - 0 to 1023
Registered - 1024 to 49151
Dynamic - Else

Question 20

What is the name of the port range that services like LDAP and FTP live on?

Answer 20

Well known

Question 21

What is the name of the port range that might contain a service like RDP?

Answer 21

Registered

Question 22

What is the name of a port range that applications may used randomly?

Answer 22

Dynamic

Question 23

What is the KDC in kerberos?

Answer 23

Key distribution server, focal point of authentication, must be protected.

Question 24

What is the most important part of kerberos to protect?

Answer 24

KDC

Question 25

What authentication method can be disturbed by bad NTP?

Answer 25

Kerberos

Question 26

What is code coverage?

Answer 26

Percentage of source code evaluated.

Question 27

What is function coverage?

Answer 27

Evaluation of the subroutines

Question 28

What is statement coverage?

Answer 28

Evaluating each line of executable code.

Question 29

What is branch coverage?

Answer 29

Evaluating if and case statements.

Question 30

What is condition coverage?

Answer 30

Evaluating true/false statements.

Question 31

What type of code review is the percentage of source code evaluated?

Answer 31

Code coverage.

Question 32

What type of code review is the evaluation of subroutines?

Answer 32

Function coverage

Question 33

What type of code review is reviewing each line of executable code?

Answer 33

Statement coverage

Question 34

What type of code review is evaluating if and case statements?

Answer 34

Branch coverage

Question 35

What type of code review is evaluating boolean operators?

Answer 35

Condition coverage.

Question 36

What are the principles of COBIT?

Answer 36

``` Meet the needs of the stakeholder Cover the entirety of the project Apply a single integrated framework Enable a holistic approach Separate governance from management ```

Question 37

What is real evidence?

Answer 37

Tangible, may be seen or touched

Question 38

What kind of evidence may be seen or touched?

Answer 38

Real

Question 39

What is direct evidence?

Answer 39

Evidence that provides a validation of a fact

Question 40

What evidence provides a validation of a fact?

Answer 40

Direct

Question 41

What does a grand jury require?

Answer 41

Probable Cause

Question 42

What type of hearing requires only probable cause?

Answer 42

Grand Jury / Indictment

Question 43

What is ECB?

Answer 43

Electronic code book DES block cipher mode that is simple and fast, but predictable. Works best for small files. Lacks diffusion.

Question 44

What type of fast encryption would work best for small files?

Answer 44

ECB

Question 45

What part of a system does port filtering protect?

Answer 45

Applications

Question 46

What part of a system does address filtering protect?

Answer 46

Host

Question 47

What type of network filtering protects a host?

Answer 47

Address ranges or address filtering

Question 48

What type of network filtering protects applications?

Answer 48

Port

Question 49

What is the TCP header?

Answer 49

6

Question 50

What protocol has a header of 6

Answer 50

TCP

Question 51

What are the TCP/IP layers?

Answer 51

Network Access / Link Internet Host to Host / Transport Application Layer / Process

Question 52

Which is the 'bottom' TCP/IP layer?

Answer 52

Network Access