Q361 - Which of the following is the BEST way to protect Personally Identifiable Information (PII) from being exploited due to vulnerabilities of varying web applications?

1. Use cryptographic storage to store all PII
2. Use full disk encryption on all hard drives to protect PII
3. Use encrypted communications protocols to transmit PII
4. Use a security token to log into all Web applications that use PII

Q362 - Trinity needs to scan all hosts on a /16 network for TCP port 445 only. What is the fastest way she can accomplish this with Nmap? Stealth is not a concern.

1. nmap -sn -sF 10.1.0.0/16 445
2. nmap -p 445 -n -T4 -open 10.1.0.0/16
3. nmap -s 445 -sU -T5 10.1.0.0/16
4. nmap -p 445 -max -Pn 10.1.0.0/16

Q363 - It is a kind of malware (malicious software) that criminals install on your computer so they can lock it from a remote location. This malware generates a pop-up window, webpage, or email warning from what looks like an official authority. It explains that your computer has been locked because of possible illegal activities on it and demands payment before you can access your files and programs again. Which of the following terms best matches the definition?

1. Ransomware
2. Adware
3. Spyware
4. Riskware

Q364 - What are the three types of authentication?

1. Something you: know, remember, prove
2. Something you: have, know, are
3. Something you: show, prove, are
4. Something you: show, have, prove

Q365 - What is the proper response for a NULL scan if the port is open?

1. SYN
2. ACK
3. FIN
4. PSH
5. RST
6. No response

Q366 - An nmap command that includes the host specification of 202.176.56-57.* will scan _______ number of hosts.

1. 2
2. 256
3. 512
4. Over 10, 000

Q367 - What is the code written for?

1. Buffer Overflow
2. Encryption
3. Bruteforce
4. Denial-of-service (Dos)

Q368 - When analyzing the IDS logs, the system administrator noticed an alert was logged when the external router was accessed from the administrator's computer to update the router configuration. What type of an alert is this?

1. False positive
2. False negative
3. True positve
4. True negative

Q369 - How does an operating system protect the passwords used for account logins?

1. The operating system performs a one-way hash of the passwords.
2. The operating system stores the passwords in a secret file that users cannot find.
3. The operating system encrypts the passwords, and decrypts them when needed.
4. The operating system stores all passwords in a protected segment of non-volatile memory.

Q370 - What type of analysis is performed when an attacker has partial knowledge of innerworkings of the application?

1. Black-box
2. Announced
3. White-box
4. Grey-box

Q371 - Which of the following settings enables Nessus to detect when it is sending too many packets and the network pipe is approaching capacity?

1. Netstat WMI Scan
2. Silent Dependencies
3. Consider unscanned ports as closed
4. Reduce parallel connections on congestion

Q372 - Name two software tools used for OS guessing? (Choose two.)

1. Nmap
2. Snadboy
3. Queso
4. UserInfo
5. NetBus

Q373 - What is one thing a tester can do to ensure that the software is trusted and is not changing or tampering with critical data on the back end of a system it is loaded on?

1. Proper testing
2. Secure coding principles
3. Systems security and architecture review
4. Analysis of interrupts within the software

Q374 - Bob received this text message on his mobile phone: ""Hello, this is Scott Smelby from the Yahoo Bank. Kindly contact me for a vital transaction on: scottsmelby@yahoo.com"". Which statement below is true?

1. This is probably a legitimate message as it comes from a respectable organization.
2. Bob should write to scottsmelby@yahoo.com to verify the identity of Scott.
3. This is a scam as everybody can get a @yahoo address, not the Yahoo customer service employees.
4. This is a scam because Bob does not know Scott.

Q375 - You are attempting to run an Nmap port scan on a web server. Which of the following commands would result in a scan of common ports with the least amount of noise in order to evade IDS?

1. nmap -A - Pn
2. nmap -sP -p-65535-T5
3. nmap -sT -O -T0
4. nmap -A --host-timeout 99-T1

Q376 - Which of the following is the BEST approach to prevent Cross-site Scripting (XSS) flaws?

1. Use digital certificates to authenticate a server prior to sending data.
2. Verify access right before allowing access to protected information and UI controls.
3. Verify access right before allowing access to protected information and UI controls.
4. Validate and escape all information sent to a server.

Q377 - Which of the following is a preventive control?

1. Smart card authentication
2. Security policy
3. Audit trail
4. Continuity of operations plan

Q378 - To determine if a software program properly handles a wide range of invalid input, a form of automated testing can be used to randomly generate invalid input in an attempt to crash the program. What term is commonly used when referring to this type of testing?

1. Fuzzing
2. Randomizing
3. Mutating
4. Bounding

Q379 - What is the broadcast address for the subnet 190.86.168.0/22?

1. 190.86.168.255
2. 190.86.255.255
3. 190.86.171.255
4. 190.86.169.255

Q380 - Which of the following security operations is used for determining the attack surface of an organization?

1. Running a network scan to detect network services in the corporate DMZ
2. Training employees on the security policy regarding social engineering
3. Reviewing the need for a security clearance for each employee
4. Using configuration management to determine when and where to apply security patches

Q381 - Which tier in the N-tier application architecture is responsible for moving and processing data between the tiers?

1. Application Layer
2. Data tier
3. Presentation tier
4. Logic tier

Q382 - The security administrator of ABC needs to permit Internet traffic in the host 10.0.0.2 and UDP traffic in the host 10.0.0.3. He also needs to permit all FTP traffic to the rest of the network and deny all other traffic. After he applied his ACL configuration in the router, nobody can access to the ftp, and the permitted hosts cannot access the Internet. According to the next configuration, what is happening in the network?

1. The ACL 104 needs to be first because is UDP
2. The ACL 110 needs to be changed to port 80
3. The ACL for FTP must be before the ACL 110
4. The first ACL is denying all TCP traffic and the other ACLs are being ignored by the router

Q383 - How can a policy help improve an employee's security awareness?

1. By implementing written security procedures, enabling employee security training, and promoting the benefits of security
2. By using informal networks of communication, establishing secret passing procedures, and immediately terminating employees
3. By sharing security secrets with employees, enabling employees to share secrets, and establishing a consultative help line
4. By decreasing an employee's vacation time, addressing ad-hoc employment clauses, and ensuring that managers know employee strengths

Q384 - Company A and Company B have just merged and each has its own Public Key Infrastructure (PKI). What must the Certificate Authorities (CAs) establish so that the private PKIs for Company A and Company B trust one another and each private PKI can validate digital certificates from the other company?

1. Poly key exchange
2. Cross certification
3. Poly key reference
4. Cross-site exchange

Q385 - Risks = Threats x Vulnerabilities is referred to as the:

1. Risk equation
2. Threat assessment
3. BIA equation
4. Disaster recovery formula

Q386 - In 2007, this wireless security algorithm was rendered useless by capturing packets and discovering the passkey in a matter of seconds. This security flaw led to a network invasion of TJ Maxx and data theft through a technique known as wardriving. Which Algorithm is this referring to?

1. Wired Equivalent Privacy (WEP)
2. Wi-Fi Protected Access (WPA)
3. Wi-Fi Protected Access 2 (WPA2)
4. Temporal Key Integrity Protocol (TKIP)

Q387 - This kind of password cracking method uses word lists in combination with numbers and special characters:

1. Hybrid
2. Linear
3. Symmetric
4. Brute Force

Q388 - Which of the following security policies defines the use of VPN for gaining access to an internal corporate network?

1. Network security policy
2. Remote access policy
3. Information protection policy
4. Access control policy

Q389 - Which of the following ensures that updates to policies, procedures, and configurations are made in a controlled and documented fashion?

1. Regulatory compliance
2. Peer review
3. Change management
4. Penetration testing

Q390 - Within the context of Computer Security, which of the following statements describes Social Engineering best?

1. Social Engineering is the act of publicly disclosing information
2. Social Engineering is the means put in place by human resource to perform time accounting
3. Social Engineering is the act of getting needed information from a person rather than breaking into a system
4. Social Engineering is a training program within sociology studies