Which of the following is a client-server tool utilised to evade firewall inspection?
_________ is a tool that can hide processes from the process list, can hide files, registry entries, and intercept keystrokes.
What does a firewall check to prevent particular ports and applications from getting packets into an organisation?
Windows file servers commonly hold sensitive files, databases, passwords and more. Which of the following choices would be a common vulnerability that usually exposes them?
What is the term coined for logging, recording and resolving events in a company?
It is a vulnerability in GNU's bash shell, discovered in September of 2014, that gives attackers access to run remote commands on a vulnerable system. The malicious software can take control of an infected machine, launch denial-of-service attacks to disrupt websites, and scan for other vulnerable devices (including routers).
Which of the following vulnerabilities is being described?
Which service in a PKI will vouch for the identity of an individual or company?
Which of the following defines the role of a root Certificate Authority (CA) in a Public Key Infrastructure (PKI)?
A company's Web development team has become aware of a certain type of security vulnerability in their Web software. To mitigate the possibility of this vulnerability being exploited, the team wants to modify the software requirements to disallow users from entering HTML as input into their Web application.
What kind of Web application vulnerability likely exists in their software?
During a security audit of IT processes, an IS auditor found that there were no documented security procedures. What should the IS auditor do?
Some clients of TPNQM SA were redirected to a malicious site when they tried to access the TPNQM main site. Bob, a system administrator at TPNQM SA, found that they were victims of DNS Cache Poisoning.
What should Bob recommend to deal with such a threat?
A company's policy requires employees to perform file transfers using protocols which encrypt traffic. You suspect some employees are still performing file transfers using unencrypted protocols because the employees do not like changes.
You have positioned a network sniffer to capture traffic from the laptops used by employees in the data ingest department. Using Wire shark to examine the captured traffic, which command can be used as a display filter to find unencrypted file transfers?
You are performing a penetration test. You achieved access via a buffer overflow exploit and you proceed to find interesting data, such as files with usernames and passwords. You find a hidden folder that has the administrator's bank account password and login information for the administrator's bitcoin account.
What should you do?
Your business has decided to add credit card numbers to the data it backs up to tape. Which of the following represents the best practice your business should observe?
By using a smart card and pin, you are using a two-factor authentication that satisfies
Which of the following tools can be used to perform a zone transfer?
Advanced encryption standard is an algorithm used for which of the following?
A penetration tester was hired to perform a penetration test for a bank. The tester began searching for IP ranges owned by the bank, performing lookups on the bank's DNS servers, reading news articles online about the bank, watching what times the bank employees come into work and leave from work, searching the bank's job postings (paying special attention to IT related jobs), and visiting the local dumpster for the bank's corporate office.
What phase of the penetration test is the tester currently in?
Session splicing is an IDS evasion technique in which an attacker delivers data in multiple, smallsized packets to the target computer, making it very difficult for an IDS to detect the attack signatures.
Which tool can be used to perform session splicing attacks?
You're doing an internal security audit and you want to find out what ports are open on all the servers. What is the best way to find out?
When security and confidentiality of data within the same LAN is of utmost priority, which IPSec mode should you implement?
Which type of sniffing technique is generally referred as MiTM attack?