Practice Test 1-2

Question

An auditor recommends implementing a physical security access control that will allow a guard to isolate and screen users before they enter or exit a secure area. Which of the following would be BEST fulfill this recommendation?

Answer 1

Faraday Cage

Answer 2

SSL/TLS (Secure Socket Layer/Transport Layer Security)

Answer 3

S/MIME (Secure/Multipurpose Internet Mail Extensions)

Answer 4

SNMPv3 (Simple Network Management Protocol ver 3)

Answer 5

SRTP (Secure Real-Time Protocol)

Answer 6

Shibboleth

Answer 7

Store credentials in LDAP (Lightweight Directory Access Protocol).

Answer 8

Use NTLM (New Technology LAN Manager) authentication.

Answer 9

Implement Kerberos.

Answer 10

Use MSCHAP (Microsoft Challenge Handshake Authentication Protocol) authentication.

Answer 11

Applying vendor-specific configurations.

Answer 12

Developing regulatory frameworks.

Answer 13

Implementing security control diversity.

Answer 14

Creating security benchmarks.

Answer 15

ARP (Address Resolution Protocol) poisoning

Answer 16

IGMP (Internet Group Management Protocol) snooping

Answer 17

IP (Internet Protocol) spoofing

Answer 18

SYN flooding

Answer 19

MD5 (Message Digest 5)

Answer 20

3DES (Triple Digital Encryption Standard)

Answer 21

RIPEMD (RACE Integrity Primitives Evaluation Message Digest)

Answer 22

SHA-1 (Secure Hashing Algorithm ver 1)

Answer 23

All of the above

Answer 24

None of the above

Answer 25

None of the above.

Answer 26

All of the above.

Answer 27

SSH (Secure Shell)

Answer 28

Shared secret

Answer 29

SNMPv3 (Simple Network Management Protocol ver 3)

Answer 30

CHAP (Challenge Handshake Authentication Protocol)

Answer 31

RADIUS Federation

Answer 32

Wildcard certificates

Answer 33

Reverse proxy

Answer 34

Ransomware

Answer 35

Logic bomb

Answer 36

Disable Telnet and deploy SSH (Secure Shell).

Answer 37

Disable Telnet and deploy SFTP (Secure File Transfer Protocol).

Answer 38

Disable Telnet and deploy SNMPv3 (Simple Network Management Protocol ver 3)

Answer 39

Disable Telnet and deploy S/MIME (Secure/Multipurpose Internet Mail Extensions)

Answer 40

Reduced failed logon attempts.

Answer 41

Mandatory password changes.

Answer 42

Increased account lockout time.

Answer 43

Time-of-day restrictions.

Answer 44

To reduce the operational risk so application users can continue using the system while the patch is being applied in the production environment.

Answer 45

To reduce security risk by having a baseline against which the patched system can be compared if the system becomes compromised.

Answer 46

To reduce operational risk so the team can quickly restore the application to a previous working condition if the patch fails.

Answer 47

To reduce security risk so vulnerability scans can be performed on a pre- and post-patched system and the results can be compared.

Answer 48

curiosity.

Answer 49

notoriety.

Answer 50

financial gain.

Answer 51

political cause.

Answer 52

Incompatibility issues with currently implemented software.

Answer 53

Lack of vendor support on the version currently in use.

Answer 54

Poorly defined security baselines.

Answer 55

Use of expired certificates on the network.

Answer 56

Crypto-malware

Answer 57

Ransomware

Answer 58

DLP (Data Loss Prevention)

Answer 59

Trust model

Answer 60

Intermediate CA

Answer 61

Key escrow

Answer 62

Preventive

Answer 63

Race condition

Answer 64

Lack of vendor support

Answer 65

Untrained users

Answer 66

Remote access VPN

Answer 67

VPN concentrator

Answer 68

Site-to-site VPN

Answer 69

Data exfiltration

Answer 70

Insider threat

Answer 71

Permission issues

Answer 72

Baseline deviation

Answer 73

Reflected XSS (Cross-site Scripting)

Answer 74

Stored XSS (Cross-site Scripting)

Answer 75

Cross-site request forgery

Answer 76

SQL (Structured Query Language) injection

Answer 77

Router ACL's

Answer 78

BPDU guard

Answer 79

Flood guard

Answer 80

DHCP snooping

Answer 81

Determine the source of the virus that has infected the workstation.

Answer 82

Sanitize the workstation's internal drive.

Answer 83

Reimage the workstation for normal operation.

Answer 84

Disable the network connections on the workstation.

Answer 85

OTP (One-time Password)

Answer 86

Block cipher

Answer 87

IV (Initialization Vector)

Answer 88

Wildcard certificate

Answer 89

Extended validation certificate

Answer 90

Certificate chaining

Answer 91

Certificate utilizing the SAN field

Answer 92

Off-site backups

Answer 93

HTTPS (Hypertext Terminal Protocol Secure)

Answer 94

SMTP (Simple Mail Transfer Protocol)

Answer 95

TLS (Transport Layer Security)

Answer 96

SFTP (Secure File Transfer Protocol)

Answer 97

Administrative

Answer 98

Corrective

Answer 99

SaaS (Software as a Service)

Answer 100

IaaS (Infrastructure as a Service)

Answer 101

MaaS (Monitoring as a Service)

Answer 102

Password cracker

Answer 103

Rainbow table

Answer 104

Protocol analyzer

Answer 105

Banner grabbing

Answer 106

White box test

Answer 107

Gray box test

Answer 108

Black box test

Answer 109

Sandbox test

Answer 110

Users are running port scans on the network.

Answer 111

An outside malicious user is performing a MitM attack.

Answer 112

An amplified DDos attack is in progress.

Answer 113

A worm is attacking the network.

Answer 114

A race condition is being leveraged.

Answer 115

Non-intrusive

Answer 116

Credentialed

Answer 117

The files have both been compromised because the numeric and letter sequence indicates an error.

Answer 118

The integrity checksum is MD5 and cannot be assumed reliable.

Answer 119

Given the output, the developer can assume there is no integrity compromise.

Answer 120

The MD5 and SHA-1 checksums match, so the files have not been compromised.

Answer 121

Impersonation

Answer 122

Credential harvesting

Answer 123

Password cracking

Answer 124

Lateral movement

Answer 125

Legal hold

Answer 126

Chain of custody

Answer 127

Order if volatility

Answer 128

Data aquisition

Answer 129

LDAP (Lightweight Directory Access Protocol)

Answer 130

TKIP (Temporal Key Integrity Protocol)

Answer 131

CCMP (Counter-Mode/CBC-Mac Protocol)

Answer 132

WPA2-PSK (WiFi Protected Access 2 - Preshared Key)

Answer 133

Credentialed vulnerability scan

Answer 134

Passive scan

Answer 135

Non-credentialed scan

Answer 136

Non-intrusive vulnerability testing

Answer 137

Penetration testing

Answer 138

AES (Advanced Encryption Standard)

Answer 139

SSL (Secure Sockets Layer)

Answer 140

TLS (Transport Layer Security)

Answer 141

RSA (Rivest, Shamir, & Adleman)

Answer 142

Baselining

Answer 143

Mandatory access controls

Answer 144

Control diversity

Answer 145

System hardening

Answer 146

Add the following rule to the firewall: 5 PERMIT FROM: ANY TO:ANY PORT:53

Answer 147

Replace rule number 10 with the following rule: 10 PERMIT FROM:ANY TO:ANY PORT:22

Answer 148

Insert the following rule in the firewall: 25 PERMIT FROM:ANY TO:ANY PORTS:ANY

Answer 149

Remove the following rule from the firewall: 30 DENY FROM:ANY TO:ANY PORT:ANY

Answer 150

It allows the software to run in an unconstrained environment with full network access

Answer 151

It eliminates the possibility of privilege escalation attacks against the local VM host

Answer 152

It facilitates the analysis of possible malware by allowing it to run until resources are exhausted

Answer 153

It restricts access of the software to a contained logical space and limits possible damage

Answer 154

Extended domain validation

Answer 155

TLS (Transport Layer Security) host certificate

Answer 156

OCSP (Online Certificate Status Protocol) stapling

Answer 157

Wildcard certificate

Answer 158

Disable account lockouts

Answer 159

Set the maximum password age to 15 days

Answer 160

Set the minimum password age to seven days

Answer 161

Increase password length to 18 characters

Answer 162

Contact the legal and compliance department for guidance.

Answer 163

Delete the files, remove the FTP software, and notify management.

Answer 164

Back up the files and return the device to the user.

Answer 165

Wipe and reimage the device.

Answer 166

Domain hijacking

Answer 167

Buffer overflow

Answer 168

Privilege escalation

Answer 169

Compare configurations against platform benchmarks.

Answer 170

Confirm adherence to the company's industry-specific regulations

Answer 171

Review the company's current security baseline.

Answer 172

Verify alignment with policy related to regulatory compliance.

Answer 173

Run an exploitation framework to confirm vulnerabilities.

Answer 174

VDI (Virtual Desktop Infrastructure)

Answer 175

Storage segmentation

Answer 176

Containerization

Answer 177

Geofencing

Answer 178

PaaS ( Platform as a Service)

Answer 179

IaaS (Infrastucture as a Service)

Answer 180

VDI (Virtual Desktop Infrastructure)

Answer 181

User-based access controls

Answer 182

Shared accounts

Answer 183

Group-based access controls

Answer 184

Roaming profiles

Answer 185

Individual accounts

Answer 186

Location based-policies

Answer 187

Geofencing authentication

Answer 188

Two-factor authentication

Answer 189

Context-aware authentication

Answer 190

Biometric authentication

Answer 191

arp - s 192.168.1.1 00-3a-d1-fa-b1-06

Answer 192

dig - x@192.168.1.1 mypc.comptia.com

Answer 193

nmap - A - T4 192.168.1.1

Answer 194

tcpdump - lnv host 192.168.1.1 or either 00:3a:d1:fa:b1:06

Answer 195

To prevent duplicate values from being stored

Answer 196

To make the password retrieval process very slow

Answer 197

To protect passwords from being saved in readable format

Answer 198

To prevent users from using simple passwords for their access credentials

Answer 199

OpenID Connect

Answer 200

Escalation of privilege

Answer 201

SQL Injection

Answer 202

Active reconnaissance

Answer 203

Proxy server

Answer 204

An attacker could potentially perform a downgrade attack.

Answer 205

The connection is vulnerable to resource exhaustion.

Answer 206

The integrity of the data could be at risk.

Answer 207

The VPN concentrator could revert to L2TP.

Answer 208

The IPSec payload reverted to 16-bit sequence numbers.

Answer 209

Security awareness training

Answer 210

Intrusion detection system

Answer 211

SAML (Security Assertions Markup Language)

Answer 212

LDAP (Lightweight Directory Access Protocol)

Answer 213

OAuth (Open Authorization)

Answer 214

Shibboleth

Answer 215

Non-intrusive

Answer 216

Authenticated

Answer 217

Credentialed

Answer 218

The MTTR (mean time to repair) is faster.

Answer 219

The MTTR (mean time to repair) is slower.

Answer 220

The RTO (Recovery Time Objective) has increased.

Answer 221

The RTO (Recovery Time Objective) has decreased.

Answer 222

The MTTF (Mean Time to Failure) has increased.

Answer 223

The MTTF (Mean Time to Failure) has decreased.

Answer 224

Permission issues

Answer 225

Access violations

Answer 226

Certificate issues

Answer 227

Misconfigured devices

Answer 228

Public key

Answer 229

Shared key

Answer 230

Elliptic curve

Answer 231

MD5 (Message Digest 5)

Answer 232

Private key

Answer 233

DES (Digital Encryption Standard)

Answer 234

XOR (Exclusive Or)

Answer 235

PBKDF2 (Password-based Key Derivation Function 2)

Answer 236

HMAC (Hashed Message Authentication Code)

Answer 237

RIPEMD (RACE Integrity Primitives Evaluation Message Digest)

Answer 238

Security question

Answer 239

Smart card

Answer 240

Passphrase

Answer 241

SaaS (Software as a Service)

Answer 242

CASB (Cloud Access Security Broker)

Answer 243

IaaS (Infrastucture as a Service)

Answer 244

PaaS (Platform as a Service)

Answer 245

Lessons learned

Answer 246

identification

Answer 247

Preparation

Answer 248

Non-repudiation

Answer 249

Email content encryption

Answer 250

Steganography

Answer 251

Transport security

Answer 252

Message integrity

Answer 253

Ransomware

Answer 254

Require the use of an eight-character PIN.

Answer 255

Implement containerization of company data.

Answer 256

Require annual AUP (Acceptable Use Policy) sign-off.

Answer 257

Use geofencing tools to unlock devices while on the premises.

Answer 258

Insufficient key bit length

Answer 259

Weak cipher suite

Answer 260

Unauthenticated encryption method

Answer 261

Poor implementation

Answer 262

Make a copy of everything in memory on the workstation

Answer 263

Turn off the workstation

Answer 264

Consult the information security policy

Answer 265

Run a virus scan

Answer 266

Sustainability

Answer 267

Homogeneity

Answer 268

Resiliency

Answer 269

Configurability

Answer 270

Removing the hard drive from its enclosure

Answer 271

Using software to repeatedly rewrite over the disk space

Answer 272

Using Blowfish encryption on the hard drives

Answer 273

Using magnetic fields to erase the data

Answer 274

S/MIME (Secure/Multipurpose Internet Mail Extensions)

Answer 275

SSH (Secure Shell)

Answer 276

SNMPv3 (Simple Network Management Protocol ver 3)

Answer 277

FTPS (File Transfer Protocol Secure)

Answer 278

SRTP (Secure Real-Time Protocol)

Answer 279

HTTPS (Hypertext Terminal Protocol Secure)

Answer 280

LDAPS (Lightweight Directory Access Protocol Secure)

Answer 281

The SELinux mode on the server is set to "enforcing."

Answer 282

The SELinux mode on the server is set to "permissive."

Answer 283

An FACL (File System Access Control List) has been added to the permissions for the file.

Answer 284

The admins group does not have adequate permissions to access the file.

Answer 285

The public/private views on the Comptia.org DNS servers are misconfigured.

Answer 286

Comptia.org is running an older mail server, which may be vulnerable to exploits.

Answer 287

The DNS SPF records have not been updated for Comptia.org.

Answer 288

192.168.102.67 is a backup mail server that may be more vulnerable to attack.

Answer 289

Escalate the issue to senior management.

Answer 290

Apply organizational context to the risk rating.

Answer 291

Organize for urgent out-of-cycle patching.

Answer 292

Exploit the server to check whether it is a false positive.

Answer 293

Service level agreement

Answer 294

Memorandum of understanding

Answer 295

Business partner agreement

Answer 296

Interoperability agreement

Answer 297

Implement a mobile data loss agent on the devices to prevent any user manipulation with the contact information.

Answer 298

Restrict screen capture features on the devices when using the custom application and the contact information.

Answer 299

Restrict contact information storage data flow so it is only shared with the customer application.

Answer 300

Require complex passwords for authentication when accessing the contact information.

Answer 301

Cloud-based antivirus solution, running as local admin, with push technology for definition updates

Answer 302

Implementation of an off-site datacenter hosting all company data, as well as deployment of VDI for all client computing needs

Answer 303

Host-based heuristic IPS, segregated on a management VLAN, with direct control of the perimeter firewall ACLs

Answer 304

Behavior-based IPS with a communication link to a cloud-based vulnerability and threat feed

Answer 305

Configure a firewall with deep packet inspection that restricts traffic to the systems.

Answer 306

Configure a separate zone for the systems and restrict access to known ports.

Answer 307

Configure the systems to ensure only necessary applications are able to run.

Answer 308

Configure the host firewall to ensure only the necessary applications have listening ports.

Answer 309

Use a protocol analyzer to reconstruct the data and implement a web-proxy.

Answer 310

Deploy a web-proxy and then blacklist the IP on the firewall.

Answer 311

Deploy a web-proxy and implement IPS at the network edge.

Answer 312

Use a protocol analyzer to reconstruct the data and blacklist the IP on the firewall.

Answer 313

Key risk indicators

Answer 314

Lessons learned

Answer 315

Recovery point objectives

Answer 316

Tabletop exercise

Answer 317

Survey threat feeds from services inside the same industry.

Answer 318

Purchase multiple threat feeds to ensure diversity and implement blocks for malicious traffic.

Answer 319

Conduct an internal audit against industry best practices to perform a qualitative analysis.

Answer 320

Deploy a UTM solution that receives frequent updates from a trusted industry vendor.

Answer 321

Buffer overflow directed at a specific host MTA

Answer 322

SQL injection directed at a web server

Answer 323

Cross-site scripting directed at www.company.com

Answer 324

Race condition in a UNIX shell script

Answer 325

Implement SAML so the company's services may accept assertions from the customers' authentication servers.

Answer 326

Provide customers with a constrained interface to manage only their users' accounts in the company's active directory server.

Answer 327

Provide a system for customers to replicate their users' passwords from their authentication service to the company's.

Answer 328

Use SOAP (Simple Object Access Protocol) calls to support authentication between the company's product and the customers' authentication servers.

Answer 329

Lessons learned review

Answer 330

Root cause analysis

Answer 331

Incident audit

Answer 332

Corrective action exercise

Answer 333

a gray-box penetration test.

Answer 334

a risk analysis.

Answer 335

a vulnerability assessment.

Answer 336

an external security audit.

Answer 337

a red team exercise.

Answer 338

the current internal key management system.

Answer 339

a third-party key management system that will reduce operating costs.

Answer 340

risk benefits analysis results to make a determination.

Answer 341

a software solution including secure key escrow capabilities

Answer 342

One key pair will be used for encryption and decryption. The other will be used to digitally sign the data.

Answer 343

One key pair will be used for encryption. The other key pair will provide extended validation.

Answer 344

Data will be encrypted once by each key, doubling the confidentiality and non-repudiation strength.

Answer 345

One key pair will be used for internal communication, and the other will be used for external communication.

Answer 346

Time-of-day restrictions

Answer 347

Password complexity

Answer 348

Location-based authentication

Answer 349

Group-based access control

Answer 350

Standard naming convention

Answer 351

WPS (WiFi Protected Setup)

Answer 352

WPA2-PSK (WiFi Protected Access 2 - Preshared Key)

Answer 353

TKIP (Temporal Key Integrity Protocol)

Answer 354

Implement a reverse proxy.

Answer 355

Implement an email DLP (Data Loss Prevention).

Answer 356

Implement a spam filter.

Answer 357

Implement a host-based firewall.

Answer 358

Implement a HIDS (Host-based Intrusion Detection System).

Answer 359

Setting up a server

Answer 360

Configuring federation between authentication servers

Answer 361

Enabling TOTP (Time-based One-time Password)

Answer 362

Deploying certificates to endpoint devices

Answer 363

Provide the private key to a public CA.

Answer 364

Provide the public key to the internal CA.

Answer 365

Provide the public key to a public CA.

Answer 366

Provide the private key to the internal CA.

Answer 367

Provide the public/private key pair to the internal CA.

Answer 368

Provide the public/private key pair to a public CA.

Answer 369

Install a corporately monitored mobile antivirus on the devices.

Answer 370

Prevent the installation of applications from a third-party application store.

Answer 371

Build a custom ROM than can prevent jailbreaking.

Answer 372

Require applications to be digitally signed.

Answer 373

Phishing is used by attackers to steal a person's identity.

Answer 374

Vishing attacks require some knowledge of the target of attack.

Answer 375

Vishing attacks are accomplished using telephony services.

Answer 376

Phishing is a category of social engineering attack.

Answer 377

Passive scan

Answer 378

Aggressive scan

Answer 379

Credentialed scan

Answer 380

Intrusive scan

Answer 381

Password cracker

Answer 382

Vulnerability scanner

Answer 383

DLP scanner

Answer 384

Ransomware

Answer 385

The attacker is replacing a cookie.

Answer 386

The attacker is stealing a document.

Answer 387

The attacker is replacing a document.

Answer 388

The attacker is deleting a cookie.

Answer 389

Implementing MDM software

Answer 390

Deploying relevant group policies to the device

Answer 391

Installing full device encryption

Answer 392

Removing administrative rights to the devices

Answer 393

Guest account

Answer 394

Service account

Answer 395

User account

Answer 396

Local account

Answer 397

Proximity card, fingerprint scanner, PIN

Answer 398

Fingerprint scanner, voice recognition, proximity card

Answer 399

Smart card, user PKI certificate, privileged user certificate

Answer 400

Voice recognition, smart card, proximity card

Answer 401

Shibboleth

Answer 402

RADIUS federation

Answer 403

OpenID connect

Answer 404

Eliminate shared accounts.

Answer 405

Create a standard naming convention for accounts

Answer 406

Implement usage auditing and review.

Answer 407

Enable account lockout thresholds.

Answer 408

Copy logs in real time to a secured WORM (Write Once Read Many) device.

Answer 409

Implement time-of-day restrictions.

Answer 410

Perform regular permission audits and reviews.

Answer 411

Competitor

Answer 412

Hacktivist

Answer 413

Organized crime

Answer 414

A rainbow table attack performs a hash lookup.

Answer 415

A rainbow table attack uses the hash as a password.

Answer 416

In a collision attack, the hash and the input data are equivalent.

Answer 417

In a collision attack, the same input results in different hashes.

Answer 418

Misconfigured devices.

Answer 419

Logs and event anomalies.

Answer 420

Authentication issues.

Answer 421

Unauthorized software.

Answer 422

CBC (Cipher Block Chaining)

Answer 423

MD5 (Message Digest 5)

Answer 424

RSA (Rivest, Shamir, & Adleman)

Answer 425

Infrastructure

Answer 426

Virtualization

Answer 427

HTTPS (Hypertext Terminal Protocol Secure)

Answer 428

LDAPS (Lightweight Directory Access Protocol Secure)

Answer 429

SCP (Secure Copy)

Answer 430

SNMPv3 (Simple Network Management Protocol ver 3)

Answer 431

traceroute 8.8.8.8

Answer 432

ping -1 30 8.8.8.8 -a 600

Answer 433

nc -1 192.168.5.1 -p 9856

Answer 434

pskill pid 9487

Answer 435

Least privilege

Answer 436

Job rotation

Answer 437

Background checks

Answer 438

Separation of duties

Answer 439

The password expired on the account and needed to be reset.

Answer 440

The employee does not have the rights needed to access the database remotely.

Answer 441

Time-of-day restrictions prevented the account from logging in.

Answer 442

The employee's account was locked out and needed to be unlocked.

Answer 443

Outdated antivirus

Answer 444

Wi-Fi signal strength

Answer 445

Social engineering

Answer 446

Default configuration

Answer 447

MTBF (Mean Time Between Failures)

Answer 448

MTTR ( Mean Time to Recover)

Answer 449

RTO (Recovery Time Objective)

Answer 450

RPO (Recovery Point Objective)

Answer 451

Penetration test

Answer 452

Vulnerability scan

Answer 453

Active reconnaissance

Answer 454

Patching assessment report

Answer 455

TACACS+ (Terminal Access Controller Access Control System Plus)

Answer 456

CHAP (Challenge Handshake Authentication Protocol)

Answer 457

LDAP (Lightweight Directory Access Protocol)

Answer 458

RADIUS (Remote Authentication Dial-in User Server)

Answer 459

MSCHAPv2 (Microsoft Challenge Handshake Authentication Protocol ver 2)

Answer 460

Proximity badge

Answer 461

Physical key

Answer 462

Cross-site request forgery

Answer 463

Buffer overflow

Answer 464

SQL injection

Answer 465

JavaScript data insertion

Answer 466

Firewall evasion script

Answer 467

NAT tables

Answer 468

Rainbow tables

Answer 469

ARP tables

Answer 470

Open wireless network and SSL (Secure Socket Layer) VPN (Virtual Private Network)

Answer 471

WPA (WiFi Protected Access) using a preshared key

Answer 472

WPA2 (WiFi Protected Access 2) using a RADIUS (Remote Authentication Dial-in User Server) back-end for 802.1x authentication

Answer 473

WEP (Wired Equivalent Privacy) with 40-bit key

Answer 474

The scanner must be able to enumerate the host OS of devices scanner

Answer 475

The scanner must be able to footprint the network

Answer 476

The scanner must be able to check for open ports with listening services

Answer 477

The scanner must be able to audit file system permissions

Answer 478

SSL (Secure Socket Layer)

Answer 479

CRL (Certificate Revocation List)

Answer 480

PKI (Public Key Infrastructure)

Answer 481

ACL (Acces Control List)

Answer 482

RAT (Remote Access Trojan)

Answer 483

Install an additional firewall

Answer 484

Implement a redundant email server

Answer 485

Block access to personal email on corporate systems

Answer 486

Update the X.509 certificates on the corporate email server

Answer 487

Update corporate policy to prohibit access to social media websites

Answer 488

Review access violation on the file server

Answer 489

Launch an investigation to identify the attacking host

Answer 490

Initiate the incident response plan

Answer 491

Review lessons learned captured in the process

Answer 492

Remove malware and restore the system to normal operation

Answer 493

Policy violation

Answer 494

Social engineering

Answer 495

Insider threat

Answer 496

Zero-day attack

Answer 497

Low-level formatting

Answer 498

Repartitioning

Answer 499

Overwriting

Answer 500

Eradication

Answer 501

Containment

Answer 502

Identification

Answer 503

Cloud-based site

Answer 504

Trust model

Answer 505

Intermediate CA

Answer 506

Key escrow

Answer 507

Enable CHAP (Challenge Handshake Authentication Protocol)

Answer 508

Disable NTLM (New Technology LAN Manager)

Answer 509

Enable Kerberos

Answer 510

Disable PAP (Password Authentication Protocol)

Answer 511

Vulnerability scanner

Answer 512

Protocol analyzer

Answer 513

Network mapper

Answer 514

Web inspector

Answer 515

Download manager

Answer 516

Content manager

Answer 517

Segmentation manager

Answer 518

Application manager

Answer 519

Shared accounts

Answer 520

Preshared password

Answer 521

Least privilege

Answer 522

Sponsored guest

Answer 523

Buffer overflow

Answer 524

End-of-life systems

Answer 525

System sprawl

Answer 526

Weak configuration

Answer 527

Symmetric algorithm

Answer 528

Hash function

Answer 529

Digital signature

Answer 530

Obfuscation

Answer 531

Tunnel mode IPSec (Internet Protocol Security)

Answer 532

Transport mode VPN (Virtual Private Network) IPSec

Answer 533

L2TP (Layer 2 Tunneling Protocol)

Answer 534

SSL (Secure Socket Layer) VPN (Virtual Private Network)

Answer 535

Input validation

Answer 536

Proxy server

Answer 537

Stress testing

Answer 538

Eradication

Answer 539

Containment

Answer 540

Identification

Answer 541

Identify the source of the active connection

Answer 542

Perform eradication of active connection and recover

Answer 543

Perform containment procedure by disconnecting the server

Answer 544

Format the server and restore its initial configuration

Answer 545

Banner grabbing

Answer 546

Port scanning

Answer 547

Packet sniffing

Answer 548

Virus scanning

Answer 549

Reduced cost

Answer 550

More searchable

Answer 551

Better data classification

Answer 552

Expanded authority of the privacy officer

Answer 553

Accounting

Answer 554

Authorization

Answer 555

Authentication

Answer 556

Identification

Answer 557

Vulnerability scanner

Answer 558

Network-based IDS

Answer 559

Rogue system detection

Answer 560

Configuration compliance scanner

Answer 561

Transference

Answer 562

Mitigation

Answer 563

Acceptance

Answer 564

Implement separation of duties for the payroll department

Answer 565

Implement a DLP (Data Loss Prevention) solution on the payroll and human resources reviews

Answer 566

Implement a rule-based access controls on the human resources server

Answer 567

Implement regular permission auditing and reviews

Answer 568

Man-in-the-browser

Answer 569

Key exchange

Answer 570

Encryption

Answer 571

Obfuscation

Answer 572

MAC address table

Answer 573

Retina scan

Answer 574

Fingerprint scan

Answer 575

Two-factor authentication

Answer 576

Password string

Answer 577

Use a wildcard certificate

Answer 578

Use certificate chaining

Answer 579

Use a trust model

Answer 580

Use an extended validation certificate

Answer 581

Transitive trust

Answer 582

Single sign-on

Answer 583

Federation

Answer 584

Secure token

Answer 585

DNS poisoning

Answer 586

Client-side attack

Answer 587

Restore lost data from a backup.

Answer 588

Wipe the system.

Answer 589

Document the lessons learned.

Answer 590

Determine the scope of the impact.

Answer 591

Non-intrusive credentialed scan

Answer 592

Non-intrusive non-credentialed scan

Answer 593

Intrusive credentialed scan

Answer 594

Intrusive non-credentialed scan

Answer 595

Configure a captive portal for guests and WPS for staff.

Answer 596

Configure a captive portal for staff and WPA for guests.

Answer 597

Configure a captive portal for staff and WEP for guests.

Answer 598

Configure a captive portal for guest and WPA2 Enterprise for staff.

Answer 599

Host-based firewall

Answer 600

Enterprise patch management system

Answer 601

Network based intrusion prevention system

Answer 602

Application blacklisting

Answer 603

File integrity checking

Answer 604

Staging environment

Answer 605

Sandboxing

Answer 606

Secure baseline

Answer 607

Trusted OS

Answer 608

Credentialed

Answer 609

Competitors

Answer 610

Hacktivists

Answer 611

Script kiddies

Answer 612

Employ time-of-day restrictions.

Answer 613

Employ password complexity.

Answer 614

Employ a random key generator strategy.

Answer 615

Employ an account expiration strategy.

Answer 616

Employ a lockout policy.

Answer 617

SSD (Solid State Drive)

Answer 618

Paging file

Answer 619

RAM (Random Access Memory)

Answer 620

Cache memory

Answer 621

Ransomware

Answer 622

Buffer overflow

Answer 623

Role-based access control

Answer 624

Rule-based access controls

Answer 625

Password cracker

Answer 626

Unencrypted credentials

Answer 627

Authentication issues

Answer 628

Weak cipher suite

Answer 629

Permission issues

Answer 630

Discretionary access control

Answer 631

Mandatory access controls

Answer 632

Role-based access control

Answer 633

Rule-based access control

Answer 634

The firewall is disabled on workstations.

Answer 635

SSH is enable on servers.

Answer 636

Browser homepages have not been customized.

Answer 637

Default administrator credentials exist on networking hardware.

Answer 638

The OS is only set to check for updates once a day.

Answer 639

The computer in question has not pulled the latest ACL policies for the firewall.

Answer 640

The computer in question has not pulled the latest GPO policies from the management server.

Answer 641

The computer in question has not pulled the latest antivirus definitions from the antivirus program.

Answer 642

The computer in question has not pulled the latest application software updates.

Answer 643

Symmetric algorithm

Answer 644

Hash function

Answer 645

Digital signature

Answer 646

Obfuscation

Answer 647

Deploy multiple web servers and implement a load balancer

Answer 648

Increase the capacity of the perimeter router to 10 Gbps

Answer 649

Install a firewall at the network to prevent all attacks

Answer 650

Use redundancy across all network devices and services

Answer 651

The server will be unable to connect to server clients due to lack of bandwidth

Answer 652

The server's firewall will be unable to effectively filter traffic due to the amount of data transmitted

Answer 653

The server will crash when trying to reassemble all the fragmented packets

Answer 654

The server will exhaust its memory maintaining half-open connections

Answer 655

Identification, authentication, authorization

Answer 656

Identification, authorization, authentication

Answer 657

Authentication, identification, authorization

Answer 658

Authorization, identification, authentication

Answer 659

Infrared detection

Answer 660

Faraday cage

Answer 661

Protected distributions

Answer 662

Shoulder surfing

Answer 663

Impersonation

Answer 664

Dumpster diving

Answer 665

Secure IMAP (Internet Message Access Protocol)

Answer 666

DNSSEC (Domain Name System Security Extensions)

Answer 667

S/MIME (Secure/Multipurpose Internet Mail Extensions)

Answer 668

SMPTS (Simple Mail Transfer Protocol Secure)

Answer 669

HTTPS (Hypertext Terminal Protocol Secure)

Answer 670

Multifactor authentication

Answer 671

SSO (Single sign-on)

Answer 672

Biometrics

Answer 673

Federation

Answer 674

Flip the documents face down so no one knows these documents are PII sensitive

Answer 675

Shred the documents and let the owner print the new set

Answer 676

Retrieve the documents, label them with a PII cover sheet, and return them to the printer

Answer 677

Report to the human resources manager that their personnel are violating a privacy policy

Answer 678

ROI (Return on Investment)

Answer 679

ARO (Annualized Rate of Occurence)

Answer 680

ALE (Annualized Loss Expectancy)

Answer 681

MTBF (Mean Time Between Failures)

Answer 682

MTTF (Mean Time to Failure)

Answer 683

TCO (Total Cost of Ownership)

Answer 684

RSA (Rivest, Shamir, & Adleman)

Answer 685

DSA (Digital Signature Algorithm)

Answer 686

DHE (Diffie-Hellman ephemeral mode))

Answer 687

HMAC (Hashed Message Authentication Code)

Answer 688

PBKDF2 (Password-based Key Derivation Function 2)

Answer 689

Hardware token and smart card

Answer 690

Voice recognition and retina scan

Answer 691

Strong password and fingerprint

Answer 692

PIN and security questions

Answer 693

Verify the certificate has not expired on the server

Answer 694

Ensure the certificate has a .pfx extension on the server

Answer 695

Update the root certificate into the client computer certificate store

Answer 696

Install the updated private key on the web server

Answer 697

Have users clear their browsing history and relaunch the session

Answer 698

Password expiration

Answer 699

Password length

Answer 700

Password complexity

Answer 701

Password history

Answer 702

Password lockout

Answer 703

Restore lost data from a backup.

Answer 704

Wipe the system.

Answer 705

Document the lessons learned.

Answer 706

Determine the scope of impact.

Answer 707

Confidentiality

Answer 708

Availability

Answer 709

Non-repudiation

Answer 710

Competitor

Answer 711

Hacktivist

Answer 712

Organized crime

Answer 713

Cable locks

Answer 714

Screen filters

Answer 715

Geotracking

Answer 716

Remote wipe

Answer 717

Launch an investigation to identify the attacking host.

Answer 718

Initiate the incident response plan.

Answer 719

Review lessons learned captured in the process.

Answer 720

Remove malware and restore the system to normal operation.

Answer 721

Make a forensic copy.

Answer 722

Create a hash of the hard drive.

Answer 723

Recover hard drive data.

Answer 724

Update the evidence log.

Answer 725

Infrastructure

Answer 726

Virtualization

Answer 727

Faraday cage

	Created by Arthur Casto about 4 years ago

Next up

Practice Test 1-2

Description

Resource summary

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Question 16

Question 17

Question 18

Question 19

Question 20

Question 21

Question 22

Question 23

Question 24

Question 25

Question 26

Question 27

Question 28

Question 29

Question 30

Question 31

Question 32

Question 33

Question 34

Question 35

Question 36

Question 37

Question 38

Question 39

Question 40

Question 41

Question 42

Question 43

Question 44

Question 45

Question 46

Question 47

Question 48

Question 49

Question 50

Question 51

Question 52

Question 53

Question 54

Question 55

Question 56

Question 57

Question 58

Question 59

Question 60

Question 61

Question 62

Question 63

Question 64

Question 65

Question 66

Question 67

Question 68

Question 69

Question 70

Question 71

Question 72

Question 73

Question 74

Question 75

Question 76