Copiar e Editar

CASP+ Study

Descrição

Covers all objectives of the CASP+
Buddy Armstrong
Quiz por Buddy Armstrong, atualizado more than 1 year ago
Buddy Armstrong
Criado por Buddy Armstrong mais de 1 ano atrás
31
0
0

Resumo de Recurso

Questão 1

Questão
What is a technical security control?
Responda
  • Access control vestibule
  • Separation of duties
  • Smart card authentication
  • User training

Questão 2

Questão
What are the clues to watch for to determine if an email message is legitimate or not?
Responda
  • Digital Signature
  • Email address
  • Company Name
  • Grammar

Questão 3

Questão
What physical security mechanism opens a second internal door only after external door has been closed and locked?
Responda
  • Bollards
  • CCTB cameras
  • Access control vestibule
  • Security guards

Questão 4

Questão
What type of hardware device can capture user keystrokes and remains undetected by antivirus software?
Responda
  • Wi-fi royter
  • Key fob
  • Keylogger
  • USB thumb drive

Questão 5

Questão
What serves as a centralized list of risks, impacts, mitigations, and severity ratings?
Responda
  • Risk management framework
  • Risk register
  • Disaster recovery plan
  • Incident response plan

Questão 6

Questão
What is the correct sequence for the risk management lifecycle?
Responda
  • Analyze risk, treat risk, monitor risk, identify risk
  • identify risk, Analyze risk, treat risk, monitor risk
  • treat risk, monitor risk, identify risk, Analyze risk
  • identify risk, monitor risk, Analyze risk, treat risk

Questão 7

Questão
Which type of threat actor promotes an ideology?
Responda
  • Script kiddie
  • Organized crime
  • Hacktivist
  • Nation state

Questão 8

Questão
What is the purpose of social engineering?
Responda
  • Promote ideology
  • Denial of service
  • Data exfiltration
  • Deception

Questão 9

Questão
You have decided to purchase cybersecurity insurance to cover DDoS or ransomware events. Which type of risk treatment is this?
Responda
  • Risk acceptance
  • Risk avoidance
  • Risk mitigation
  • Risk transfer

Questão 10

Questão
How is the annualized loss expectancy (ALE) calculated?
Responda
  • Exposure factor × single loss expectancy
  • Annual rate of occurrence × single loss expectancy
  • Annual rate of occurrence × asset value
  • Exposure factor × annual rate of occurrence

Questão 11

Questão
Which physical security mechanism opens a second internal door only after the external door has been closed and locked?
Responda
  • CCTV cameras
  • Access control vestibule
  • Security guards
  • Bollards

Questão 12

Questão
Separation of duties
Responda
  • Separation of duties
  • Job rotation
  • Least privilege
  • Mandatory vacation

Questão 13

Questão
You have been awarded a government contract that will last two years. You must share IT systems and data with a business partner to fulfil the contract. You need to ensure specific rules are followed when linking the networks of both companies together. What must be signed by both parties?
Responda
  • MOA
  • ISA
  • SLA
  • MOU

Questão 14

Questão
What is an example of OSINT?
Responda
  • Financial records
  • LinkedIn profiles
  • Medical history
  • Firewall logs

Questão 15

Questão
What are clues to watch for to determine if an email message is legitimate or not?
Responda
  • Grammar
  • Company name
  • Email address
  • Digital signature

Questão 16

Questão
Which type of hardware device can capture user keystrokes and remains undetected by antivirus software?
Responda
  • Key fob
  • USB thumb drive
  • Keylogger
  • Wi-Fi router

Questão 17

Questão
Which Docker CLI command is used to download a container image?
Responda
  • docker push
  • docker pull
  • docker down
  • docker up

Questão 18

Questão
What should you do to harden a hypervisor host?
Responda
  • Disable unnecessary services
  • Place all NICs on the production VLAN
  • Configure a dedicated management NIC on its own VLAN
  • Install a RAID controller

Questão 19

Questão
Which Linux command can you use to display the VM IP address?
Responda
  • ifconfig
  • tracert
  • ping
  • ipconfig

Questão 20

Questão
You need to deploy an HTTP-based application container into the cloud. What must you do to ensure port 80 in the container is in a listening state?
Responda
  • Nothing
  • Map port 80 in the container to port 80 in the cloud
  • Map port 80 in the container to a public IP address
  • Map port 80 in the container to a virtual machine

Questão 21

Questão
You are deploying an on-premises virtual machine that requires a bi-directional connection to the production network. What type of network connection should you configure?
Responda
  • Private
  • Host-only
  • NAT
  • Bridged

Questão 22

Questão
Which benefit is derived from using application containers instead of virtual machines?
Responda
  • Regulatory compliance
  • Faster startup time
  • Better app performance
  • Increased security

Questão 23

Questão
You are setting up a server to run multiple virtual machine guests. You have installed the OS which is designed specifically as a hypervisor. What type of hypervisor is this?
Responda
  • Type B
  • Type 1
  • Type 2
  • Type A

Questão 24

Questão
Which type of virtualization allows users to run productivity applications from a full operating system remotely through thin client?
Responda
  • Desktop virtualization
  • Application virtualization
  • Containerized application
  • Operating system virtualization

Questão 25

Questão
What benefit does a container registry provide?
Responda
  • Regulatory compliance
  • Encryption of application container images
  • Centralized container image repository
  • Application container clustering

Questão 26

Questão
Which security issue does virtual machine encryption address?
Responda
  • The decryption passphrase must be known to mount VM disks while the VM is running
  • A hash of the virtual machine hard disks is generated
  • The virtual machine is replicated to a secondary hypervisor for high availability
  • The decryption passphrase must be known to start the VM

Questão 27

Questão
Which cloud items can a network security group be associated with?
Responda
  • vNIC
  • VNet
  • Subnet
  • VPC

Questão 28

Questão
Which types of rules can be configured with Azure Firewall?
Responda
  • DNAT
  • Proxy
  • HTTP
  • Application

Questão 29

Questão
Which types of items can be stored in a cloud key vault?
Responda
  • Windows admin passwords
  • PKI certificates
  • Linux root passwords
  • Encryption keys

Questão 30

Questão
What is the purpose of the STAR registry?
Responda
  • Storage of custom application container images
  • Assurance of cloud provider security accreditations
  • Cloud provider SLA listing
  • Centralized cloud-based IAM

Questão 31

Questão
What is used to determine the order in which cloud security group rules are processed?
Responda
  • IP address
  • Priority value
  • UDP port number
  • TCP port number

Questão 32

Questão
Which cloud computing characteristic refers to paying for services used?
Responda
  • Pooled resources
  • Metered usage
  • Broad network access
  • Rapid elasticity

Questão 33

Questão
What is the benefit of VNet peering?
Responda
  • Enhanced security
  • VM connectivity using private IPs
  • Regulatory compliance
  • More bandwidth

Questão 34

Questão
Which statement best describes encrypting stored data?
Responda
  • Protecting data in process
  • Protecting data at rest
  • Protecting data in archives
  • Protecting data in transit

Questão 35

Questão
Which type of cloud is owned and used by a single organization?
Responda
  • Private
  • Public
  • Community
  • Hybrid

Questão 36

Questão
Which term is the most closely associated with autoscaling?
Responda
  • Horizontal scaling
  • Template
  • Automation
  • Vertical scaling

Questão 37

Questão
Which port is used to remotely manage Windows hosts?
Responda
  • 80
  • 22
  • 3389
  • 443

Questão 38

Questão
What is the most common consequence of SLA uptime requirements violations?
Responda
  • Service credits
  • Free unlimited service usage
  • Lawsuit
  • Damages awarded

Questão 39

Questão
You want all outbound subnet traffic to first be sent to a firewall appliance for inspection. Which IP address should you specify for the firewall?
Responda
  • 127.0.0.0/0
  • Firewall public IP
  • Firewall private IP
  • 0.0.0.0/0

Questão 40

Questão
You are configuring a DNAT rule in Azure Firewall to allow incoming SSH management of Linux VMs. Which IP addresses should you specify in the DNAT rule?
Responda
  • Firewall private IP
  • VM private IP
  • Firewall public IP
  • VM public IP

Questão 41

Questão
What is contained within a cloud-based virtual network?
Responda
  • Network security groups
  • Subnets
  • Resource groups
  • Route tables

Questão 42

Questão
You have manually deployed a cloud-based Linux virtual machine. Which type of cloud service model is this?
Responda
  • IaaS
  • SaaS
  • PaaS
  • SECaaS

Questão 43

Questão
Which network security protocol is normally used to enable HTTPS for websites?
Responda
  • SSL
  • IPsec
  • TLS
  • VPN

Questão 44

Questão
Which authentication methods can be used with Windows IPsec?
Responda
  • Device name
  • Kerberos
  • Certificate
  • User name

Questão 45

Questão
You need to view all user certificates for a Windows user on her Windows 10 laptop. What should you do?
Responda
  • View the properties of the user account in Active Directory
  • Use the manage-bde command
  • Use MMC with the certificates snapin
  • Use MMC with the disk management snapin

Questão 46

Questão
Which command line tool can be used to manage BitLocker?
Responda
  • certutil
  • cipher
  • manage-bde
  • openssl

Questão 47

Questão
Which block cipher mode of operation makes a block cipher a stream cipher?
Responda
  • OFB
  • ECB
  • CBC
  • GCM

Questão 48

Questão
How does hashing differ from encryption?
Responda
  • It is reversible
  • A key is used
  • It is not reversible
  • No keys are used

Questão 49

Questão
What must be done when issuing certificates from a private CA to ensure certificates will work correctly in an organization?
Responda
  • Enable certificate pinning on all devices
  • Join all devices to an Active Directory domain
  • Add each issued certificate to all devices
  • Add the private CA trusted root certificate to all devices

Questão 50

Questão
Which PKI items issue certificates?
Responda
  • Subordinate CA
  • Certificate revocation list
  • Certificate template
  • Root CA

Questão 51

Questão
Which cryptographic solution is a network appliance that can perform cryptographic operations?
Responda
  • HSM
  • TPM
  • BitLocker
  • EFS

Questão 52

Questão
Which command line tool is used to manage EFS file encryption?
Responda
  • cipher
  • Get-FileHash
  • certutil
  • openssl

Questão 53

Questão
Which PowerShell cmdlet generates a file hash?
Responda
  • Set-Hash
  • Get-FileHash
  • Generate-FileHash
  • New-FileHash

Questão 54

Questão
Which mechanism controls who can retrieve certificates from an Azure Key Vault?
Responda
  • Firewall ACL
  • Azure resource group RBAC roles
  • Azure AD conditional access policies
  • Vault access policy

Questão 55

Questão
What type of PKI certificate can be used for DNS subdomains that fall under a parent domain?
Responda
  • Code signing
  • Wildcard
  • Extended validation
  • User

Questão 56

Questão
You have configured and enabled a custom certificate template for your Windows certification authority, yet users are unable to use the template to acquire a PKI certificate. What is the most likely cause of the problem?
Responda
  • The template must be imported to Active Directory
  • Users are not logged into their station with elevated permissions
  • Users do not have the “Enroll” permission for the template
  • The template must first be exported

Questão 57

Questão
With asymmetric cryptography, which key is used to encrypt?
Responda
  • Public
  • Secret
  • Private
  • Pre-shared

Questão 58

Questão
Which type of storage area network solution uses standard network equipment and the TCP/IP protocol suite?
Responda
  • Cluster shared storage
  • FC SAN
  • NAS
  • iSCSI

Questão 59

Questão
You need to configure ten workgroup Windows servers with the same Windows Defender firewall settings. You must achieve this with the least amount of administrative effort. What should you do?
Responda
  • Create the same firewall rules on each host manually
  • Configure firewall settings in the domain Group Policy Object (GPO)
  • Mirror the servers together then create the firewall rules
  • Create the firewall rules on one host, export the configuration and import on other servers

Questão 60

Questão
Which RAID level is disk mirroring?
Responda
  • RAID 5
  • RAID 1
  • RAID 6
  • RAID 0

Questão 61

Questão
What makes a reverse proxy different from network address translation (NAT)?
Responda
  • Reverse proxying and NAT are exactly the same
  • NAT applies to OSI layer 7
  • Reverse proxying applies to OSI layer 7
  • Reverse proxying applies to OSI layer 4

Questão 62

Questão
You are configuring VPN client certificate authentication in the Microsoft Azure cloud. What must be provided for the Azure virtual network gateway?
Responda
  • Root certificate public key
  • User certificate private key
  • User VPN password
  • User VPN device MAC address

Questão 63

Questão
Which Linux command can be used to create a mirrored disk volume?
Responda
  • mdadm
  • grep
  • fdisk
  • ifconfig

Questão 64

Questão
How do jump boxes protect servers?
Responda
  • Servers do not have to be directly exposed to the Internet
  • Server file systems are encrypted
  • Server file systems are hashed
  • Servers have DLP policies applied

Questão 65

Questão
Which type of firewall is considered firewall-friendly?
Responda
  • NAT
  • L2TP/IPsec
  • PPTP
  • SSL/TLS

Questão 66

Questão
Which type of Azure Firewall rule allows standard packet filtering rules?
Responda
  • DNAT rules
  • Application rules
  • Network rules
  • Application rules_

Questão 67

Questão
Which solution can ensure users accept the terms of use before allowing Internet access?
Responda
  • Captive portal
  • MAC address filtering
  • Enable WPA3
  • Disable SSID broadcasting

Questão 68

Questão
How do reverse shells defeat most firewall rules?
Responda
  • Attacker connectivity is done through the Tor network
  • Connections are initiated from the compromised host
  • Firewalls are compromised and rules are disabled
  • Connections are initiated from the attacker machine

Questão 69

Questão
Which type of security is the result of enabling DNSSEC?
Responda
  • Integrity
  • Confidentiality
  • Compliance
  • Availability

Questão 70

Questão
What is used to group disk devices together in the Windows Server operating system?
Responda
  • GRP
  • RAID 1
  • Storage pool
  • MBR

Questão 71

Questão
Which standard is used for network access control?
Responda
  • 802.15
  • 802.1x
  • 802.3
  • 802.11x

Questão 72

Questão
Which attributes are used to determine file system permissions when using Windows Dynamic Access Control?
Responda
  • Active directory users only
  • File objects and directory objects only
  • Active directory users and devices only
  • Active directory users, devices, and file system objects

Questão 73

Questão
Which Microsoft Azure configuration checks where users are authenticated from?
Responda
  • Conditional Access policy
  • Azure policy
  • MFA
  • RBAC

Questão 74

Questão
How are HMAC-based one-time passwords encrypted?
Responda
  • Using a PKI certificate
  • Using a symmetric key
  • Using a public key
  • Using a private key

Questão 75

Questão
Which port does RADIUS authentication use by default?
Responda
  • 1812
  • 4532
  • 3389
  • 636

Questão 76

Questão
Which tool can be used to discover RDP hosts on a network?
Responda
  • netstat
  • nmap
  • nc
  • john

Questão 77

Questão
Which methods are not available when configuring Google 2-Step Verification?
Responda
  • Voice calls
  • Conditional access policies
  • Text messages
  • Security keys

Questão 78

Questão
Which command can be used to manually refresh Group Policy on a Windows host?
Responda
  • certutil
  • mmc
  • cipher
  • gpupdate

Questão 79

Questão
You need to ensure Microsoft Azure cloud technicians can administer virtual machines in a specific resource group. What should you do?
Responda
  • Assign the Virtual Machine Contributor role to specific virtual machines
  • Assign the Virtual Machine Contributor role to the Azure subscription
  • Assign the Owner role to the resource group
  • Assign the Virtual Machine Contributor role to the resource group

Questão 80

Questão
You need to view passwords cracked by the “John the Ripper” tool. Which command should you issue?
Responda
  • john --viewer
  • john --show
  • john --passshow
  • john --crack

Questão 81

Questão
Which term describes sensitive medical information?
Responda
  • SPI
  • PHI
  • PII
  • GDPR

Questão 82

Questão
Where does Amazon Macie discover data?
Responda
  • Web searches
  • Big data analytics
  • SQL databases
  • S3 buckets

Questão 83

Questão
Which IT management item contains standardized configurations to ensure security and consistency?
Responda
  • GDPR
  • CI
  • ITIL
  • CMDB

Questão 84

Questão
Which term is synonymous with wiping a hard disk?
Responda
  • Partitioning
  • Scrubbing
  • Formatting
  • Deleting

Questão 85

Questão
Who determines how data will be managed?
Responda
  • Chief information officer
  • Data protection officer
  • Data custodian
  • Data owner

Questão 86

Questão
Which data privacy standard governs how EU citizen data is handled?
Responda
  • PCI DSS
  • GDPR
  • COPPA
  • HIPAA

Questão 87

Questão
What is the maximum number of tags that can be added to a single Azure resource?
Responda
  • 25
  • 50
  • 5
  • 10

Questão 88

Questão
You need to apply data labels to files on a Windows server. What should you use?
Responda
  • Microsoft File Server Resource Manager
  • Azure Backup
  • Azure Information Protection
  • Microsoft Internet Information Services

Questão 89

Questão
Which type of business agreement focuses on a service provider guaranteeing a level of service to a consumer?
Responda
  • SLA
  • MOU
  • MOA
  • NDA

Questão 90

Questão
You have created Azure data classification labels for use with Azure Information Protection. What must you create next to use the labels?
Responda
  • Azure App Service
  • AIP policy
  • Azure storage account
  • RBAC assignment

Questão 91

Questão
What should be done to harden IoT devices that cannot be patched?
Responda
  • Place on an isolated network
  • Issue a PKI certificate
  • Apply group policy
  • Change the default settings

Questão 92

Questão
You have just registered a smartphone with an MDM tool. What is the next thing that will happen on the smartphone?
Responda
  • Complex passwords will be enabled
  • Process inventory
  • The authentication PIN will be reset
  • The camera will be disabled

Questão 93

Questão
You are searching for vulnerable RDP hosts using the shodan.io site. Which port should you search for?
Responda
  • 25
  • 3389
  • 389
  • 22

Questão 94

Questão
You need Internet access for your laptop in a remote area where wired and wireless Internet are unavailable. You have a cell phone with data enabled. What should you enable to provide Internet access for your laptop?
Responda
  • Biometric authentication
  • Jailbreaking
  • Tethering
  • Debug bridge

Questão 95

Questão
A smartphone technician requires full access to solve problems on a user smartphone. The phone is registered with an MDM solution that restricts smartphone access. What should the technician do?
Responda
  • Unregister the smartphone device from the MDM tool
  • Request a security code to temporarily disable the MDM security policy on the MDM server
  • Request a security code to temporarily disable the MDM security policy on the smartphone
  • Perform a factory reset of the smartphone

Questão 96

Questão
You need to ensure that lost or stolen phones can be located. What should you enable?
Responda
  • Google Play Protect
  • Rooting
  • Facial recognition
  • Find My Mobile

Questão 97

Questão
Which software development methodology is linear and depends on previous project phase deliverables?
Responda
  • Diamond
  • Agile
  • Waterfall
  • NIST

Questão 98

Questão
What is used to ensure blockchain integrity?
Responda
  • Hash of previous block for each new transaction
  • Hash of next block for each new transaction
  • Digital signature of next block for each new transaction
  • Digital signature of previous block for each new transaction

Questão 99

Questão
Which OWASP ZAP feature can send unanticipated data to a web app to observe its behaviour?
Responda
  • Reporting
  • Zapping
  • Fuzzing
  • Proxying

Questão 100

Questão
Which type of testing occurs while software is running?
Responda
  • Regression
  • Unit
  • Static
  • Dynamic

Questão 101

Questão
Which type of artificial intelligence uses neural networks?
Responda
  • Machine learning
  • Big data analytics
  • Deep web
  • Deep learning

Questão 102

Questão
Which type of web application attack is most likely to result from improper input validation?Which type of web application attack is most likely to result from improper input validation?
Responda
  • ARP cache poisoning
  • Directory traversal
  • DDoS
  • Cross-site scripting

Questão 103

Questão
What provides real-time monitoring to ensure safety when hardware malfunctions in an industrial computing environment?
Responda
  • SIS
  • ICS
  • SCADA
  • DNP3

Questão 104

Questão
Which industrial computing protocol is commonly used for public utility networks, such as water and electricity?
Responda
  • Modbus
  • ICS
  • DNP3
  • CIP

Questão 105

Questão
Which industrial control attack fed false readings for centrifuges to monitoring stations?
Responda
  • Code Red
  • Slammer
  • StuxNet
  • Michelangelo

Questão 106

Questão
What term is used for an industry-specific specialized computer?
Responda
  • PLC
  • Modbus
  • SCADA
  • RTU

Questão 107

Questão
Which Linux command is used to compile binaries from source code?
Responda
  • make
  • grep
  • chmod
  • sudo

Questão 108

Questão
Which Metasploit command allows querying?
Responda
  • searchsploit
  • find
  • updatedb
  • search

Questão 109

Questão
Which type of tool is nmap?
Responda
  • Penetration testing
  • Network scanner
  • Patch management
  • Vulnerability assessment

Questão 110

Questão
What is the default file format for Wireshark packet capture files?
Responda
  • PCAP
  • HTML
  • XML
  • PDF

Questão 111

Questão
What is the name of the Amazon Web Services centralized monitoring service?
Responda
  • S3
  • CloudWatch
  • CloudTrail
  • EC2

Questão 112

Questão
Which Snort command line parameter can be used to test the Snort configuration?
Responda
  • -S
  • -T
  • -A
  • -U

Questão 113

Questão
Which port is used for Linux syslog forwarding by default?
Responda
  • 389
  • 445
  • 514
  • 25

Questão 114

Questão
What is the purpose of a honeypot?
Responda
  • To gather statistics on packets in and out
  • To track C&C servers
  • To gather forensic evidence used to convict offenders
  • To track malicious user activity

Questão 115

Questão
Which tcpdump command line parameter saves captured packets to a file?
Responda
  • -w
  • -W
  • -P
  • -s

Questão 116

Questão
You are writing a shell script to monitor Linux hosts. You need to use pattern matching to look for host names in specific cost centers using the format COSTCENTER3DIGITCODE-CITY. What should you do?
Responda
  • Enable Windows event viewer subscriptions
  • Add regular expressions to your script
  • Clear all Linux log filters
  • Enable Linux syslog forwarding

Questão 117

Questão
You have become overwhelmed with the amount of log entries on your Windows servers. You would like a convenient way to view only critical and error log events. What should you do?
Responda
  • Create a custom view that filters for critical and error events
  • Filter each log for critical and error events
  • Forward the logs to a SIEM system
  • Export each log and filter the exported results

Questão 118

Questão
You are planning the use of a SOAR system for incident response. Which item allows you to automate incident response?
Responda
  • Runbook
  • Heap overflow
  • IDS
  • SIEM

Questão 119

Questão
What is the default location and name of the Snort configuration file?
Responda
  • /usr/share/snort.conf
  • /usr/share/snort.config
  • /etc/snort/snort.conf
  • /etc/snort/snort.config

Questão 120

Questão
You need to filter captured Wireshark traffic so that only secured website traffic is shown. What should you filter on?
Responda
  • L2TP
  • IPsec
  • HTTPS
  • SSH

Questão 121

Questão
What is a zombie?
Responda
  • A proxy anonymization network
  • An infected computer under malicious user control
  • A server that provides infected hosts with instructions
  • A nonresponsive computer

Questão 122

Questão
What is the most effective way to mitigate compromises due to users clicking on links?
Responda
  • Stateful firewall rules
  • Antivirus scanners
  • Spam filtering
  • User training and awareness

Questão 123

Questão
Your manager asks you to assess host vulnerabilities exposed to internal employees. What should you do?
Responda
  • Use Nmap against hosts
  • Run a pen test against hosts
  • Run a non-credentialed vulnerability scan
  • Run a credentialed vulnerability scan

Questão 124

Questão
Why should C programmers stay away from the gets() function?
Responda
  • It does not do array boundary checking
  • It does not support strings
  • It allows malicious code to be stored in a variable
  • It is not object oriented

Questão 125

Questão
Which type of testing uses red and blue teams?
Responda
  • Vulnerability
  • Regression
  • Penetration
  • Unit

Questão 126

Questão
Which command allows you to interact with the Metasploit Framework in Kali Linux?
Responda
  • msfadmin
  • msfconsole
  • ntp
  • searchsploit

Questão 127

Questão
Which solutions prevent stolen laptops from being compromised?
Responda
  • Patch management
  • Biometric authentication
  • Disk encryption
  • Power-on password

Questão 128

Questão
You are using various Wi-Fi reconnaissance tools and see references to a BSSID. What is this?
Responda
  • The name of a connecting wireless client device
  • The name of the wireless network
  • The MAC address of a wireless access point
  • The MAC address of a wireless client device

Questão 129

Questão
In which attack phase would a malicious user use the Nmap tool?
Responda
  • Persist
  • Clear tracks
  • Reconnaissance
  • Enumerate

Questão 130

Questão
What do malicious users use to target many victims in an attempt to trick them into clicking a link to a fraudulent site?
Responda
  • Spim
  • DDoS
  • Phishing campaign
  • Spam

Questão 131

Questão
Which type of network attack allows attacker access to VLAN traffic?
Responda
  • Cross-site request forgery
  • VLAN trunking
  • DDoS
  • VLAN hopping

Questão 132

Questão
What is one possible way to detect that steganography is being used with a file?
Responda
  • Compression
  • Digital signature
  • Hashing
  • Encryption

Questão 133

Questão
You have acquired a forensic image and hash. You must now analyze the storage media contents. What should you do?
Responda
  • Mount the forensic copy, perform the analysis
  • Mount the forensic copy, create an image
  • Mount the original media, perform the analysis
  • Mount the original media, place in a Faraday bag

Questão 134

Questão
You need to acquire a disk image in Linux that can be read by FTK imager. Which Linux command should you use?
Responda
  • grep
  • chmod
  • ldd
  • dd

Questão 135

Questão
You need to acquire evidence according to the order of volatility. In which order will you do this?
Responda
  • Swap file, RAM, hard disk
  • Hard disk, swap file, RAM
  • RAM, swap file, hard disk
  • RAM, CPU, hard disk

Questão 136

Questão
How is developer mode enabled on an Android device?
Responda
  • Install the Android Debug Bridge app
  • Plug a USB cable into the device
  • Gain root access to the device
  • Tap the software build number seven times

Questão 137

Questão
Which component prevents writing to origin storage devices when acquiring storage device images?
Responda
  • Switch port lock
  • HSM
  • TPM
  • Write-blocker

Questão 138

Questão
What benefits are derived from load balancing?
Responda
  • Higher application availability
  • Improved application performance
  • Encryption of data at rest
  • Encrypted network transmissions

Questão 139

Questão
Which type of plan is enacted during a security event?
Responda
  • Incident response
  • Business continuity
  • Disaster recovery
  • Evacuation

Questão 140

Questão
Which IP address do clients connect to for a load balanced application?
Responda
  • Forward proxy server
  • Reverse proxy server
  • Load balancer
  • Back-end virtual machine

Questão 141

Questão
What is required in Microsoft Azure to perform backups to the cloud?
Responda
  • Eventbus hub
  • Recovery vault
  • Storage account
  • Key vault

Questão 142

Questão
Which RAID level creates a copy of all data written to a primary disk?
Responda
  • 1
  • 6
  • 3
  • 5

Quer criar seus próprios Quizzes gratuitos com a GoConqr? Saiba mais.

Semelhante

Explore a Biblioteca