Ethical Hacking Final

Which of the following is an interprocess communication mechanism that allows a program running on one host to run code on a remote host?

RPC

What critical component of any OS, that can be can be vulnerable to attacks, is used to store and manage information?

File system

Which standardized remote file system protocol replaced SMB in Windows 2000 Server and later?

Common internet file system

Which of the following is an open-source implementation of CIFS?

Samba

SMB is used to share files and usually runs on top of NetBIOS, NetBEUI, or which of the following?

TCP/IP

What is the current file system that Windows utilizes that has strong security features?

NTFS

Windows 10, Windows 8, Windows Server 2016, and Windows Server 2012 have most services and features enabled by default.

HFNetChk

Early Windows OSs used which of the following programs loaded into memory to interact with a network resource or device?

NetBIOS

The MSBA tool can quickly identify missing patches and misconfigurations. T or F

True

Rootkits that pose the biggest threat to any OS are those that infect what part of the targeted device?

firmware

Embedded OSs are usually designed to be small and efficient so they do not have some of the functions that general-purpose OSs have. T or F

True

What is the most serious shortcoming of Microsoft's original File Allocation Table (FAT) file system?

no ACL support

Which of the following systems should be used when equipment monitoring and automation is critical?

SCADA

When using the Common Internet File System (CIFS), which security model will require network users to have a user name and password to access a specific resource?

User-level security

What type of malicious code could be installed in a system's flash memory to allow an attacker to access the system at a later date?

BIOS-based rootkit

When using the Common Internet File System (CIFS), which security model does not require a password to be set for the file share?

Share-level security

Which of the following is an SELinux OS security mechanism that enforces access rules based on privileges for interactions between processes, files, and users?

Mandatory Access Control

Which of the following is considered to be the most critical SQL vulnerability?

null SA password

Which of the following does Object Linking and Embedding Database (OLE DB) rely on that allows an application to access data stored on an external device?

connection strings

Which of the following refers to the flow a user is expected to follow in an application to accomplish a goal?

business logic

Which JavaScript function is a "method" or sequence of statements that perform a routine or task?

getElementById()

Adobe System's ColdFusion uses its proprietary tags, which are written in which of the following languages?

CFML

Which of the following cross-site scripting vulnerabilities types is especially harmful because it can be delivered to subsequent users of the application?

Stored

Which of the following is the interface that determines how a Web server passes data to a Web browser?

CGI

Which of the following programming languages was originally used primarily on UNIX systems, but is used more widely now on many platforms, such as Macintosh and Windows?

PHP

Which of the following is an alternative term used when referring to Application Security?

AppSec

Which of the following interfaces, developed by Microsoft, is a set of interfaces that enable applications to access data stored in a database management system (DBMS)?

OLE DB

Web applications written in CFML can also contain other client-side technologies, such as HTML and JavaScript. T or F

True

Connecting to an MS SQL Server database with Microsoft's Object Linking and Embedding Database (OLE DB) requires using which of the following providers?

SQLOLEDB

What type of useful tools can a security tester find available in both Firefox and Chrome Web browsers?

developer tools

Which of the following cross-site scripting vulnerabilities types relies on social engineering to trick a user into visiting a maliciously crafted link or URL?

reflected

Which specific type of tag do All CFML tags begin with?

CF

Which of the following resources is an excellent starting point for security professionals when investigating VBScript vulnerabilities?

Microsoft Security Bulletin

CGI programs can be written in many different programming and scripting languages, such as C/C++, Perl, UNIX shells, Visual Basic, and FORTRAN. T or F

True

What is the specific act of filtering, rejecting, or sanitizing a user's untrusted input before the application processes it?

input validation

Which of the following application tests analyzes a running application for vulnerabilities?

Dynamic Application Security Testing

OLE DB relies on connection strings that enable the application to access the data stored on an external device. T or F

True

Which type of vulnerabilities can result from a server accepting untrusted, unvalidated input?

Injections

Which of the following IEEE projects was developed to create LAN and WAN standards?

802

Which of the following defines how data is placed on a carrier signal?

Modulation

The 802.11b standard introduced Wired Equivalent Privacy (WEP), which gave many users a false sense of security that data traversing the WLAN was protected. T or F

True

Routers are the bridge between wired and wireless networks. T or F

False

What is the IEEE 802 standards name for a wireless network that is limited to one person's workspace?

WPAN

Which frequency band is used by commercial AM radio stations?

medium frequency (MF)

Which of the following is a utility that is a wireless network detector, sniffer, and an intrusion detection system?

Kismet

What protocol improves WPA encryption by adding Message Integrity Checks, Extended Initialization Vectors, Per-packet key mixing, and a Re-keying mechanism to improve encryption?

TKIP

What wireless hacking tool can perform scans for wireless access points and can set up fake APs to social-engineer users or confuse attackers using airbase-ng?

WiFi Pineapple

Which IEEE standard can achieve a throughput of 54 Mbps?

802.11g

If an organization does not want to rely on a wireless device to authenticate users, which of the following is a secure alternative?

RADIUS server

What specific type of spread spectrum modulation allows data to hop to other frequencies to avoid interference that might occur over a frequency band?

FHSS

It is possible to have a wireless network that does not connect to a wired network. T or F

True

Which of the following protocols is an enhancement to PPP, and was designed to allow a company to select its authentication method?

EAP

Which type of wireless technology uses microwave radio waves to transmit data?

Narrowband

Which of the following is a flawed wireless authentication standard created to allow users to easily add devices to a wireless network securely?

WPS

What type of encryption is currently used to secure WPA2?

AES

Which of the following EAP methods uses TLS to authenticate the server to the client, but not the client to the server?

PEAP

The 802.11 standard applies to the Physical layer of the OSI model, which deals with wireless connectivity issues of fixed, portable, and moving stations in a local area, and the Media Access Control (MAC) sublayer of which OSI model layer?

Data Link Layer

Which of the following is contained in a wireless frequency band and breaks up the band into smaller frequency ranges?

channels

To examine the router's routing table, a Cisco administrator would enter which command?

show ip route

If a Cisco administrator needs to configure a serial or Fast Ethernet port, which configuration mode should they use?

Interface configuration mode

What type of function is being performed when a router screens packets based on information in the packet header?

router screening

Which IDS system uses a baseline of normal activity and then sends an alert if the activity deviates significantly from this baseline?

Anomaly-based IDS

Which type of device monitors a network's hardware so that security administrators can identify attacks in progress and stop them?

IDS

What type of IDSs/IPSs monitors activity on network segments by sniffing traffic as it flows over the network and alerting a security administrator when something suspicious occurs?

Network-based

Routers operate at the Network layer of the TCP/IP protocol stack. T or F

True

What router feature provides basic security by mapping internal private IP addresses to public external IP addresses, essentially hiding the internal infrastructure from unauthorized personnel?

NAT

What type of firewall inspects network traffic at a higher level in the OSI model than a traditional stateful packet inspection firewall does?

application-aware firewall

Which of the following sits between the Internet and the internal network and is sometimes referred to as a perimeter network?

DMZ

What type of packet filtering records session-specific information about a network connection, including the ports a client uses?

Stateful

A large organization that is responsible for sensitive or critical data may elect to create which of the following to do damage assessment, risk remediation, and legal consultation?

Security Operations Center

What type of an IDS is being used when it does not take any action to stop or prevent an activity occurring?

passive system

What configuration mode allows a Cisco administrator to configure router settings that affect the overall operations of the router?

Global configuration mode

What specific type of tools can assist teams by identifying attacks and indicators of compromise by collecting, aggregating, and correlating log and alert data from routers, firewalls, IDS/IPS, endpoint logs, Web filtering devices, and other security tools?

SIEM

Which type of Cisco access lists can restrict IP traffic entering or leaving a router's interface based only on the source IP address?

Standard IP

Which of the following is a computer placed on the network perimeter with the main goal of distracting hackers from attacking legitimate network resources?

honeypot

When Web site visitors are involved in downloading malicious code without their knowledge, they may be unknowingly involved in what type of process?

Drive-by download

What type of IDS/IPS is used to protect a critical network server or database server by installing the IDS or IPS software on the system you're attempting to protect?

Host-based