Messer Practice Exam 1

Question 1

What is the process of gathering as much information as possible about a company from open sources such as social media, corporate websites, and business organizations?

Answer 1

Passive Footprinting

Question 2

What active reconnaissance tests directly query systems to see if a backdoor has been installed?

Answer 2

Backdoor Testing

Question 3

What process involves actively querying and receiving responses across a network?

Answer 3

OS fingerprinting

Question 4

What type of penetration test provides detailed information about specific systems or applications?

Answer 4

Partially known environment

Question 5

What protocols use TLS to provide secure communication?

Answer 5

HTTPS (Hypertext Transfer Protocol)
FTPS (File Transfer Protocol Secure)

Question 6

What protocol is used to encrypt conversations over VoIP?

Answer 6

SRTP (Secure Real-time Transport Protocol)

Question 7

What protocols aren’t encrypted?

Answer 7

Telnet
FTP
SMTP
IMAP

Question 8

What secure protocol is used for Time Synchronization?

Answer 8

NTPsec (Secure Network Time Protocol)

Question 9

What secure protocols are used for Email?

Answer 9

S/MIME (Secure/Multipurpose Internet Mail Extensions) with PKI
POP3S (Secure Post Office Protocol) with SSL.
IMAP (Internet Message Access Protocol) with SSL.
Browser-based email with SSL.

Question 10

What does SNMPv2 stand for and do?

Answer 10

Simple Network Management Protocol version 2.

Question 11

What two data sources help address file storage volatility?

Answer 11

Partition Data
Temporary File Systems

Question 12

What would an all-in-one printer that can print, scan, and fax often be categorized as?

Answer 12

Multifunction Device

Question 13

What is an IoT device?

Answer 13

Wearable technology and home automation devices.

Question 14

What does RTOs stand for?

Answer 14

Real-time operating system.

Question 15

What does SoC standfor?

Answer 15

System on a Chip.

Multiple components that run on a single chip are categorized as an SoC.

Question 16

ISO 27701

Answer 16

extends 27001 and 27002 to include management of PII and data privacy.

Question 17

ISO 31000

Answer 17

sets international standards for risk management

Question 18

ISO 27002

Answer 18

focuses on information security controls

Question 19

ISO 27001

Answer 19

The foundational standard for ISMS (Information Security Management Systems)

Question 20

What is SOAR?

Answer 20

Security Orchestration, Automation, and Response.

Designed to make security teams more effective by automating processes and integrating third-party security tools.

Question 21

What is EAP-TTLS?

Answer 21

Extensible Authentication Protocol - Tunneled Transport Layer Security

Allows the use of multiple authentication protocols transported inside of a TLS tunnel.

Question 22

What is PEAP?

Answer 22

Protected Extensible Authentication Protocol

Encapsulates EAP within a TLS tunnel, but doesn’t provide multiple authentication methods.

Question 23

What is EAP-MSCHAPv2?

Answer 23

EAP - Microsoft Challenge Handshake Authentication Protocol v2

A common implementation of PEAP

Question 24

What are two features commonly offered by a CASB?

Answer 24

Cloud Access Security Broker

-A list of applications in use
-Verification of encrypted data transfers

Question 25

Example of Race Condition

Answer 25

A file system problem is usually fixed before a reboot, but a reboot is occuring before the fix can be applied. This has created a race condition that results in constant reboots

Question 26

What does SED stand for?

Answer 26

Self Encrypting Drive

Question 27

What does curl do?

Answer 27

The curl (Client URL) command will retrive a web page and display it as HTML (source-code) at the command line.

Question 28

What is "scanless"?

Answer 28

It is a tool that allows you to perform a port scan via proxy.

Question 29

What is "Nmap"?

Answer 29

A popular port scanning and reconnaissance utility.

Question 30

What does "netstat" do?

Answer 30

It provides a list of network statistics, and the default view shows the traffic sessions b etween the local device and other devices on the network.

Question 31

What does "dig" do?

Answer 31

Domain Information Groper Queries DNS servers for the fully-qualified domain name and IP address information of other devices.

Question 32

What does "netcat" do?

Answer 32

The netcat command is used for reading or writing data to the network. It doesn't provide any statistical information about the network connection.

Question 33

What does a DNS Sinkhole do?

Answer 33

Used to redirect and identify devices that may attempt to commnuicate with an external command and control (C2) server. The DNS Sinkhole will resolve an internal IP address and can report on all devices that attempt to access the malicious domain.

Question 34

Which part of the PC startup process verifies the digital signature of the OS Kernel?

Answer 34

Trusted Boot

Question 35

What does "Measured Boot" do and when does it occur?

Answer 35

It occurs after Trusted Boot and verifies that nothing on the computer has been changed by malicious software or other processes.

Question 36

What does "Secure Boot" do and when does it occur?

Answer 36

It occurs Before Trusted Boot and checks the digital signature of the bootloader, not the OS Kernal!

Question 37

What is a "POST"?

Answer 37

Power-On Self-Test is a hardware check performed prior to booting an operating system.

Question 38

Preventative Control

Answer 38

Physically limits access to a device or area.

Question 39

Managerial Control

Answer 39

Sets a policy that is designed to control how people act

Question 40

Compensating Control

Answer 40

It doesn't prevent an attack, but it does restore from an attack using other means. Ex: An UPS does not stop a power outage, but it does provide alternative power if an outage occurs.

Question 41

Primary difference of Asymmetric Encryption

Answer 41

Assymmetric encryption uses different keys for encryption and decryption.

Question 42

What functionality does Blockchain provide?

Answer 42

The ledge functionality of a blockchain can be used to track or verify components, digital media, votes, and other physical or digital objects.

Question 43

Which is lost first, memory or temporary files?

Answer 43

Memory, it is temporary.

Question 44

A Linux administrator is downloading an updated version of her Linux distribution. The download site shows a link to the ISO and a SHA256 hash value. Which of these would describe the use of this hash value?

Answer 44

Verifies that the file was not corrupted during the file transfer because it matches what is on the website.

Question 45

What does "NGFW" stand for?

Answer 45

Next-Generation Firewall

Question 46

What is the BEST way to confirm the secure baseline of a deployed application instance?

Answer 46

Perform an integrity measurement. This is DESIGNED to check for the secure baseline of firewall settings, patch, levels, OS versions, and any other security components.

Question 47

Benefits of Kerberos

Answer 47

-Uses a ticket-based system to provide SSO (Single Sign-On) -You ONLY NEED TO AUTHENTICATE ONCE with Kerberos to gain access to multiple resources.

Question 48

What is "TACACS+"?

Answer 48

Terminal Access Controller Access-Control System It is an authentication method. Does not provide any single sign-on functionality.

Question 49

What is "LDAPS"?

Answer 49

Lightweight Directory Access Protocol Secure It is a standard for access a network directory. This can provide an authentication method Does not provide any single sign-on functionality.

Question 50

What is "802.1X"?

Answer 50

A standard for PNAC (Port-based Network Access Control) Does not provide any single sign-on functionality.

Question 51

Full-Tunnel VPN vs Split-Tunnel VPN

Answer 51

Full-Tunnel VPN: All traffic goes through the tunnel. Split-Tunnel VPN: Only sends a portion of the traffic through the encrypted tunnel. It would allow work-related traffic to securely traverse the VPN, and all other traffic would use the non-VPN option.

Question 52

What cryptographic method is used to add trust to a digital certificate?

Answer 52

A digital signature

Question 53

What does X.509 do?

Answer 53

The X.509 standard defines the structure of a certificate. It makes it easy for everyone to view the contents of a certificate, but it doesn't provide any additional trust.

Question 54

What does "RAID" stand for?

Answer 54

Redundant Array of Independent Disks

Question 55

What does "SIEM" stand for?

Answer 55

Security Information and Event Manager.

Question 56

What is S/MIME? and whats gucci about it?

Answer 56

Secure/Multipurpose Internet Mail Extensions Provides a way to integrate public key encryption and digital signatures into most modern email clients. This would encrypt all email information from client to client, retgardless of the communications used between email servers.

Question 57

What is Secure IMAP? & what does it do?

Answer 57

Secure Internet Message Access Protocol Encrypts communication downloaded from an email server, but DOES NOT provide security for outgoing email messages.

Question 58

What secure protocol would you use to: accept customer purchases from your primary website?

Answer 58

HTTPS

Question 59

What secure protocol would you use to: synchronize the time across all of your devices?

Answer 59

NTPSec

Question 60

What secure protocol would you use to: Access our switch using a CLI terminal Screen?

Answer 60

SSH

Question 61

What secure protocol would you use to: Talk with customers on scheduled conference calls?

Answer 61

SRTP

Question 62

What secure protocol would you use to: Gather metrics from routers at remote sites?

Answer 62

SNMPv3

Question 63

TCP vs UDP

Answer 63

TCP (Transmission Control Protocol): -Connection based and more reliable, but slow. UDP (User Datagram Protocol): -Connectionless and less reliable, but fast.

Question 64

FTP

Answer 64

File Transport Protocol 20, 21

Question 65

SSH

Answer 65

Secure Shell 22

Question 66

Telnet

Answer 66

23

Question 67

SMTP

Answer 67

Simple Mail Transfer Protocol 25

Question 68

DNS

Answer 68

Domain Name System 53

Question 69

DHCP

Answer 69

Dynamic Host Configuration Protocol 67, 68

Question 70

TFTP

Answer 70

Trivial File Transport Protocol 69

Question 71

HTTP

Answer 71

Hypertext Transfer Protocol 80

Question 72

HTTPS

Answer 72

Hypertext Transfer Protocol Secure 443

Question 73

SSL VPN

Answer 73

Secure Socket Layer Virtual Private Network 443

Question 74

POP3

Answer 74

Post Office Protocol v3 110

Question 75

NTP

Answer 75

Network Time Protocol 123

Question 76

IMAP4

Answer 76

Internet Message Access Protocol v4 143

Question 77

SNMP

Answer 77

Simple Network Management Protocol 161

Question 78

IPsec

Answer 78

Internet Protocol Secure 500

Question 79

RDP

Answer 79

Remote Desktop Protocol 3389