General

Question 1

Denies all traffic implicitly then allows based on rules.

Answer 1

Restrictive Firewall

Question 2

Compares one packet at a time against rule set

Answer 2

Stateless Firewall

Question 3

Maintains a state table of traffic connections and flows

Answer 3

Stateful firewall

Question 4

Provides advanced malware protection and cloud participation

Answer 4

NGFW (Next Generation Firewall)

Question 5

Uses traditional ACLS and inspects rules applied to interfaces

Answer 5

Classic firewalls

Question 6

Permits all traffic implicitly and then denies based on rules

Answer 6

Permissive firewall

Question 7

[Hijacking and Session Hijacking Attacks]

Cross-Site Scripting (XSS)

Answer 7

Affects hosts and web applications

Vulnerable website (injection attack)

Client browser trusts

Goal is to access personal info (session cookies)

User does not have to be authenticated

Question 8

[Hijacking and Session Hijacking Attacks]

Cross-Site Request Forgery (XSRF)

Answer 8

Attempt to force use to executive unwanted actions on a web app

Targets ‘state changing’ request (ie transferring funds, changing an email address, etc…)

Usually involves social engineering (sending link via chat or email)

Requires that the user to already be authenticated, credential are present in the browser

Question 9

[Public Key Infrastructure (PKI) Components

Certificate Revocation List (CRL)

Answer 9

Digital certificates can be revoked before they are set to expire

Main reason for for revoking a certificate:
Key compromise (44%)
Company ceased operations (26%)

A CRL contains a list of certificate serial numbers that have been issued by the CA and then revoked

Question 10

Which specific type of malware often targets the BIOS, boot loader, kernel, or system files, and is difficult to detect since it is often initiates before the operating system has fully booted

Answer 10

Root kit

Question 11

What category of malware can be actually be an entire operating system, smart device, gaming system, or even an automobile?

Answer 11

Spyware

Question 12

Which statement is false about key loggers?

Answer 12

False: They can all evade special on-screen keyboard software.

True: They can also be used to study human-computer collaboration

They are used by spyware to capture passwords and credits card input.

They are also used to track employees or family members to adhere to acceptable use

Question 13

Which type of virus simultaneously attacks the boot sector and executable files so that it combines the characteristics of file infector and boot sector viruses?

Answer 13

Multipartite

Question 14

What is the function that Bots and Botnets do not perform

Answer 14

Do not: Corrupt routing tables

Do: Exfiltrate data
Scan memory
Log keystrokes
Mine cyber currency

Question 15

When searching the Common Vulnerabilities and Exposures (CVE) list’s National Vulnerabilities Data (NVD), what scoring information is provided for each vulnerability?

Answer 15

Exploitability Subscore
CVSS Base Score
Impact Subscore

Question 16

Which statement is not true concerning malware worms?

Answer 16

Not true: a worm usually spreads with user action and distributes throughout a single system kernel, components, and processes.

True: it is a special form of self-replicating virus

Classic example are Sasser, ILOVEYOU, Conflicker, and Stuxnet

A worm can consume resources, infiltrate data, or simply cause the CPU to waste cycles

Question 17

Which one is not likely to be a common ransomware vector?

Answer 17

Not likely: Digitally signed upgrade

Likely: Powershell file
Infected website
Word macro
Archive file

Question 18

Which is a specific form of malware, often part of multistage exploits, that is known for creating back doors to C&C (Command & Control) servers giving crackers access to a system?

Answer 18

RAT

Question 19

What is it called when cryptomalware is delivered when a user innocently visits an infected website and downloads and installs it without their knowledge?

Answer 19

Drive-by

Question 20

What team describes the malware that bundles up different type of malicious code into a single package and delivers it in am email attachment?

Answer 20

Polymorphic packer

Question 21

Which specific form of malicious software is often used to generate a covert channel so that the remote attacker can access and control the system even on phones and other mobile devices?

Answer 21

Back door

Question 22

Which of the following my expose you organization or a user to exploits?

Answer 22

Ransomware
Poor database RBAC
Hackivism
Spear phishing

Question 23

Which statement is true concerning resources exhaustion?

Answer 23

It is an attack on availability

Question 24

True or False

All architecture and design methodologies have weaknesses and vulnerabilities?

Answer 24

True

Question 25

Used to access database, run batch jobs, or execute scripts

Answer 25

Application

Question 26

These are sometimes referred to as “break glass” accounts

Answer 26

Emergency

Question 27

Gives privileged access across all workstations and servers in a Windows domain

Answer 27

Domain Administrator

Question 28

Typically privileged local or domain accounts that are used by an application or service to interact with the operating system?

Answer 28

Service

Question 29

Commonly grants elevated access to infrastructure devices on an enterprise network.

Answer 29

Privileged user

Question 30

Provides root access to a local host in order for IT staff to perform maintenance

Answer 30

Local Administrative

Question 31

Which scenario is often related to synchronization errors on software code where malicious users can gain unauthorized access to a system or application

Answer 31

Race conditions

Question 32

Which statement is false concerning programs for training end users in security awareness?

Answer 32

False: The first step in the program is to motivate management. True: The AUP is an important aspect policy It helps to offer incentives for keeping a secure environment BYOD has complicated the issue of security awareness

Question 33

Which statement is not true regarding certificate and key management?

Answer 33

Not true: Choose AAA or CRL over OCSP for revocation True: Log all issuances and validation checking activities Validate certificate chains Use a fully-tested enterprise CA

Question 34

During vulnerabilities scanning, you have discovered improper error handling on your internet web servers where detailed internal error messages are being exposed to unauthorized users to improper input handling or error handling. Which statement would not be true on this scenario?

Answer 34

Not true: SQL injection can be exposed True: Stack traces can be exposed Database dumps can be exposed Error codes can be exposed

Question 35

Which would not be considered a vulnerable business process?

Answer 35

Would not: Using TLS and Suite B infected of SSL and IKEV1 Would be: Deploying self signed certificates Lack of front-ended/back-ended cryptosystems on DMZ servers Decoding against cyber insurance riders Not fully vetting cloud and security providers

Question 36

Which technology tries to control the use, modification, and distribution of copyrighted software and multimedia content?

Answer 36

DPM

Question 37

Which tool serves as a memory scraper and a keystroke logger

Answer 37

PoSeidon

Question 38

At which site can you find the Security Policy Project and the CIS Critical Security Controls as a free resource?

Answer 38

Sans.org

Question 39

What function as an extension of IEEE 802.1X?

Answer 39

MACsec

Question 40

Which statement are true regarding system misconfiguration

Answer 40

Human error is the number one vulnerability Coding files should be stored in a secure document library Configuration should first be tested in virtual lab

Question 41

What are the characteristics of IPSec?

Answer 41

Main protocols are ESP and AH Operates in transport or tunnel mode Open frame work that supports Suite B and GET Provides for confidentiality and anti-replay services

Question 42

The Cisco ASA 5585-X is a dominant security appliance in the speciality platform category? True or False

Answer 42

True

Question 43

Which information devices would most likely connect to a printer in the supply room at your office?

Answer 43

Access switch.

Question 44

Wireless Access Points typically create wireless LANs at which layers of the OSI model?

Answer 44

1 & 2

Question 45

Which option is not a dynamic routing protocol?

Answer 45

Not: NAT Is: OSPF EIGRP RIPV2 BGP

Question 46

Which service can perform anti-spam, anti-virus, encryption, DLP, and more in your enterprise?

Answer 46

Mail gateway

Question 47

Which network services provides logs collections, analysis, and forensics?

Answer 47

SIEM

Question 48

Which service can be integrated into web security and email security solutions to be scan e-mail, IM, SMS, and webmail, for the presence of protected and sensitive corporation data?

Answer 48

DLP

Question 49

Which proxy service would best be used for PAT, business logic, and XML purpose in the enterprise?

Answer 49

Translation proxy

Question 50

Which technology can translate and convert media streams between different technologies such as SS7, 4G, LTE, networks, and PBX systems?

Answer 50

Media gateways

Question 51

What is the scenario called when there is illegal usage of bit torrents for download pirated software into your corporate LAN, and the IPS sensor fails to alert you or block the traffic?

Answer 51

False Negative

Question 52

Which Cisco industry controls access to enterprise resources and restricts the lateral movement of threats with micro segmentation?

Answer 52

NAC

Question 53

An encryption gateway can not function on a single device between both an IPSec site-to-site VPN and a remote- access TLS VPN Select if the statement is true or false.

Answer 53

False

Question 54

Which type of event leads the logic bombs to trigger an exploit?

Answer 54

A number of times code executes. A particular date and time Mouse movements On a popular holiday

Question 55

What term describes a seemingly benign JPEG picture that may actually contain destructive malware?

Answer 55

Stegomalware

Question 56

Trojan horse malware masquerades as a legitimate program. What are the common examples of Trojan applications

Answer 56

Shareware utilities Devices drivers Freeware from P2P sites Games

Question 57

Use of Open-Source Intelligence

Answer 57

Intelligence data collected from public sources Third party / legitimate ways Open source threat intelligence

Question 58

Major source of open source feeds.

Answer 58

Information Sharing and Analysis Organization (ISAOs) Information Sharing Analysis Centers (ISACs)

Question 59

Data execution prevention applies to which option?

Answer 59

Memory

Question 60

Which removable media option is triggered when the device is plugged in?

Answer 60

Auto play

Question 61

Users complain in the morning that an application that worked the day before no longer runs without crashing. What is the most likely cause of the problem?

Answer 61

Update history.

Question 62

RAT

Answer 62

Remote Access Trojan

Question 63

Remote Access Trojan (RAT)

Answer 63

Masquerades as a different type of program than a Trojan, but rather than directly damaging the target, it opens a back door, exposing the computer to other threats, such as a keylogger.

Question 64

Trojan Horse

Answer 64

Is a program that appears to be one thing, but is actually something else. The Trojan horse contains a malicious application and is often data destructive. Examples include programs at delete the file allocation table from a hard disk, delete disk partition, delete or overwrite data, or operating system files, and so forth.

Question 65

Logic bomb

Answer 65

Is a type of malware that is designed to attack a computer system based on a specific event, such as a calendar date.

Question 66

PII

Answer 66

Personally Identifiable Information

Question 67

ICMP

Answer 67

Internet Control Message Protocol (ICMP)

Question 68

NFC

Answer 68

Near Field Communication Is a technology that allows devices that have a NFC chip to communicate over very small distances

Question 69

MDM

Answer 69

Mobile Device Management

Question 70

NAC

Answer 70

Network Access Control

Question 71

NAC

Answer 71

Provides the service required and integrates network interconnection devices such as switches, routers, and firewalls. NAC can provide pre-admission security checks, post-admission controls, updates and corrections to client computers through automated remediation.

Question 72

TPM

Answer 72

Trusted Platform Module

Question 73

TPM

Answer 73

Is dedicated microprocessor used for securing computing hardware and providing crypto graphics support. One of the most common uses for TPM is to provide full-disk encryption usually with an external key or passcode used for decryption.

Question 74

TLS

Answer 74

Transport Layer Service

Question 75

TLS

Answer 75

Is a protocol that sends encrypted data use Hypertext Transfer Protocol over Secure Sockets Layers (SSL). HTTPS uses TCP 443 to transmit data.

Question 76

SEH

Answer 76

Structured Exception Handler

Question 77

SEH

Answer 77

Is a Microsoft-specific mechanism.

Question 78

CVS

Answer 78

Concurrent Versions System

Question 79

CVS

Answer 79

Is used by developers to keep track of different versions of source code and manage large projects

Question 80

ASLR

Answer 80

Address Space Layout Randomization

Question 81

ASLR

Answer 81

Can be used by developers t prevent a memory-based attack

Question 82

DEP

Answer 82

Data Execution Prevention

Question 83

DEP

Answer 83

Stops malicious code by performing additional memory checks

Question 84

MFD

Answer 84

Multi-function devices

Question 85

MFD

Answer 85

Combines different features, including printing, scanning, and (usually) faxing.

Question 86

HSM

Answer 86

Hardware Security Module

Question 87

HSM

Answer 87

Is a physical network device that provides for key generations, as well as key storage and management, as a stand-alone device

Question 88

PKI

Answer 88

Public Key Infrastructure

Question 89

CA

Answer 89

Certificate Authorities

Question 90

CAB

Answer 90

Change Advisory Board

Question 91

CAB

Answer 91

Is defined as a group of people who can approve and evaluate a change that has to be deployed

Question 92

SCADA

Answer 92

Supervisory Control And Data Acquisition

Question 93

EAP

Answer 93

Extensible Authentication Protocol

Question 94

EAP

Answer 94

Supports various types of Authentication

Question 95

Kerberos port

Answer 95

88

Question 96

RADIUS port

Answer 96

1812

Question 97

SAML port

Answer 97

443

Question 98

TACACS+ port

Answer 98

49

Question 99

Kerberos

Answer 99

Is an open standard for authentication. Features: Native support for smart card logon Mutual authentication Delegation of authentication

Question 100

VPN

Answer 100

Virtual Private Network

Question 101

MFA

Answer 101

Multi Factor Authentication and single-sign on

Question 102

OTP

Answer 102

One-Time Password

Question 103

PIN

Answer 103

Personal Identification Number

Question 104

MSCHAP

Answer 104

Microsoft Challenge Handshake Authentication Protocol

Question 105

PPP

Answer 105

Point to Point Protocol

Question 106

CHAP

Answer 106

Challenge Handshake Authentication Protocol

Question 107

OAUTH

Answer 107

Open Authorization

Question 108

SAML

Answer 108

Security Assertions Markup Language

Question 109

PAP

Answer 109

Password Authentication Protocol

Question 110

SLIP

Answer 110

Serial Line Internet Protocol

Question 111

TACACS+

Answer 111

Terminal Access Controller Access-Control System Plus

Question 112

TACACS+

Answer 112

Standard and is used with routers, switches, and other devices to provide authentication, authorization, and accounting support

Question 113

PAP

Answer 113

Is typically only used with non-Windows legacy operations systems that do not support password encryption.

Question 114

OAUTH

Answer 114

Is an open source implementation based on the SAML

Question 115

POLP

Answer 115

Principle of Least Privilege

Question 116

POLP

Answer 116

Is minimum rights are assigned for a task to be accomplished.

Question 117

Core principles of the Agile approach to software development are:

Answer 117

Team engagement and collaboration Change-orientated projects Interactions between develops and self-organized, informal teams Continuous integrations to enhance the development process of applications The division of projects into small tasks and stage

Question 118

AS

Answer 118

Authentication Server

Question 119

TGT

Answer 119

Ticket Granting Ticket

Question 120

TOPT

Answer 120

Time Based One Time Password

Question 121

TOPT

Answer 121

Is a password that is generated from a shared key and the current time stamp.

Question 122

HOTP

Answer 122

HMAC-based One Time Password

Question 123

HOTP

Answer 123

Is based on a shared key and an incrementing counter instead of a time stamp

Question 124

PIV

Answer 124

Personal Identity Verification

Question 125

CAC

Answer 125

Common Access Card

Question 126

AUP

Answer 126

Acceptable Use Policy

Question 127

AUP

Answer 127

Is a set of terms that define what users can and cannot do

Question 128

BPA

Answer 128

Business Partner Agreement

Question 129

BPA

Answer 129

Is used to establish a relationship between business partners

Question 130

SLA

Answer 130

Service Level Agreement

Question 131

SLA

Answer 131

Defines performance expectations and describes expected levels of service. Examples uptime and response times

Question 132

MoU

Answer 132

Memorandum of Understanding

Question 133

MoU

Answer 133

Letter of intent. As a formal agreement between two or more parties confirming their intentions and common goals

Question 134

PII include

Answer 134

Full name SSN Full Address Credit card and account number Biometric information Personal Phone Numbers

Question 135

Linkable information

Answer 135

Post code Date of Birth Gender Salary information IP address

Question 136

ALE

Answer 136

Annual Loss Expectancy

Question 137

ALE formula is?

Answer 137

ALE= SLE * ARO

Question 138

SLE

Answer 138

Single Loss Expectancy

Question 139

ARO

Answer 139

Annual Rate of Occurrence

Question 140

Six main phases of incident response

Answer 140

Preparation Identification Containment Eradication Recovery Lesson learned

Question 141

Preparation?

Answer 141

A company creates an incident response policy and trains the whole team to use it.

Question 142

Identification?

Answer 142

Focus on the actual incident and describes hot to make a back up of suspected disk, record evidence, and verify affected systems

Question 143

Containment?

Answer 143

Focus on limiting scope of the issue by protecting critical systems and shutting down services if necessary

Question 144

Eradication?

Answer 144

Is the process of removing the threat or issue that ya been identified.

Question 145

Recovery?

Answer 145

Fully operational system

Question 146

Lesson Learned?

Answer 146

Response team focuses on and documents the cost of the incident, recommendations, and communications problems.

Question 147

CTL

Answer 147

Certificate Trust List

Question 148

Which of the following answers refers to an undocumented (and often legitimate) way of gaining access to a program, online service, or an entire computer system? * Logic bomb * Trojan Horse * Rootkit * Backdoor

Answer 148

Backdoor

Question 149

What is confusion

Answer 149

Output is drastically different from the input. Bits in ciphertext are a result of multiple parts of the key. Use non-linear table to translate data

Question 150

What is Diffusion?

Answer 150

Single input character changes will affect multiple output characters Each input but should change half or more of the ciphertext bits -avalanche effect Makes patterns harder to spot.

Question 151

What is obfuscation?

Answer 151

• Good Making the information difficult to understand Hiding the real information from unwanted eyes Protecting our intellectual property, protection our organization • Bad Hiding a payload to bypass protection systems Concealing malicious code within legitimate code

Question 152

Symmetric uses?

Answer 152

Secret key

Question 153

Asymmetric

Answer 153

Public key

Question 154

Types of Symmetric Algorithms

Answer 154

``` DES 3DES AES RC4 Blowfish/Townfish ```

Question 155

Asymmetric Privacy Algorithm

Answer 155

Encrypt with public key | Decrypt with private key

Question 156

Authentication Asymmetric Algorithm

Answer 156

Encrypt with private key | Decrypt with public key

Question 157

Types of Symmetric Algorithms

Answer 157

``` DES 3DES AES RC4 Blowfish/Townfish ```

Question 158

Asymmetric Algorithm Types

Answer 158

``` Diffie-Hellman RSA DSA Elliptic curve PGP/GPG ```

Question 159

Key stretching types

Answer 159

BCRYPT PBKDF2