NEW QUESTION 1
What is the role of test automation in security testing?

• A. It is an option but it tends to be very expensive.
• B. It should be used exclusivel
• C. Manual testing is outdated because of low speed and possible test setup inconsistencies.
• D. Test automation is not usable in security due to the complexity of the tests.
• E. It can accelerate benchmark tests and repeat them with a consistent test setu
• F. But it cannot replace manual testing completely.

Answer: D

NEW QUESTION 2
MX record priority increases as the number increases. (True/False.)

• A. True
• B. False

Answer: B

NEW QUESTION 3
Identify the UDP port that Network Time Protocol (NTP) uses as its primary means of communication?

• A. 113
• B. 69
• C. 123
• D. 161

Answer: C

NEW QUESTION 4
You need to deploy a new web-based software package for your organization. The package requires three separate servers and needs to be available on the Internet. What is the recommended architecture in terms of server placement?

• A. All three servers need to be placed internally
• B. A web server facing the Internet, an application server on the internal network, a database server on the internal network
• C. A web server and the database server facing the Internet, an application server on the internal network
• D. All three servers need to face the Internet so that they can communicate between themselves

Answer: B

NEW QUESTION 5
What is the purpose of a demilitarized zone on a network?

• A. To scan all traffic coming through the DMZ to the internal network
• B. To only provide direct access to the nodes within the DMZ and protect the network behind it
• C. To provide a place to put the honeypot
• D. To contain the network devices you wish to protect

Answer: B

NEW QUESTION 6
Email is transmitted across the Internet using the Simple Mail Transport Protocol. SMTP does not encrypt email, leaving the information in the message vulnerable to being read by an unauthorized person. SMTP can upgrade a connection between two mail servers to use TLS. Email transmitted by SMTP over TLS is encrypted. What is the name of the command used by SMTP to transmit email over TLS?

• A. OPPORTUNISTICTLS
• B. UPGRADETLS
• C. FORCETLS
• D. STARTTLS

Answer: D

NEW QUESTION 7
An LDAP directory can be used to store information similar to a SQL database. LDAP uses a database structure instead of SQL’s structure. Because of this, LDAP has difficulty representing many-to-one relationships.

• A. Relational, Hierarchical
• B. Strict, Abstract
• C. Hierarchical, Relational
• D. Simple, Complex

Answer: C

NEW QUESTION 8
Shellshock allowed an unauthorized user to gain access to a server. It affected many Internet-facing services, which OS did it not directly affect?

• A. Linux
• B. Unix
• C. OS X
• D. Windows

Answer: D

NEW QUESTION 9
An attacker, using a rogue wireless AP, performed an MITM attack and injected an HTML code to embed a malicious applet in all HTTP connections.
When users accessed any page, the applet ran and exploited many machines. Which one of the following tools the hacker probably used to inject HTML code?

• A. Wireshark
• B. Ettercap
• C. Aircrack-ng
• D. Tcpdump

Answer: B

NEW QUESTION 10
Elliot is in the process of exploiting a web application that uses SQL as a back-end database. He’s determined that the application is vulnerable to SQL injection, and has introduced conditional timing delays into injected queries to determine whether they are successful. What type of SQL injection is Elliot most likely performing?

• A. Error-based SQL injection
• B. Blind SQL injection
• C. Union-based SQL injection
• D. NoSQL injection

Answer: B

NEW QUESTION 11
If you want to only scan fewer ports than the default scan using Nmap tool, which option would you use?

• A. –r
• B. –F
• C. –P
• D. –sP

Answer: B

NEW QUESTION 12
How is the public key distributed in an orderly, controlled fashion so that the users can be sure of the sender’s identity?

• A. Hash value
• B. Private key
• C. Digital signature
• D. Digital certificate

Answer: D

NEW QUESTION 13
A penetration tester is conducting a port scan on a specific host. The tester found several ports opened that were confusing in concluding the Operating System (OS) version installed. Considering that NMAP result below, which of the following is likely to be installed on the target machine by the OS? Starting NMAP 5.21 at 2011-03-15 11:06 NMAP scan report for 172.16.40.65 Host is up (1.00s latency). Not shown: 993 closed ports PORT STATE SERVICE 21/tcp open ftp 23/tcp open telnet 80/tcp open http 139/tcp open netbios-ssn 515/tcp open 631/tcp open ipp 9100/tcp open MAC Address: 00:00:48:0D:EE:8

• A. The host is likely a Linux machine.
• B. The host is likely a printer.
• C. The host is likely a router.
• D. The host is likely a Windows machine.

Answer: B

NEW QUESTION 14
What is the known plaintext attack used against DES which gives the result that encrypting plaintext with one DES key followed by encrypting it with a second DES key is no more secure than using a single key?

• A. Man-in-the-middle attack
• B. Meet-in-the-middle attack
• C. Replay attack
• D. Traffic analysis attack

Answer: B

NEW QUESTION 15
Based on the following extract from the log of a compromised machine, what is the hacker really trying to steal?

• A. har.txt
• B. SAM file
• C. wwwroot
• D. Repair file

Answer: B

NEW QUESTION 16
What kind of detection techniques is being used in antivirus softwares that identifies malware by collecting data from multiple protected systems and instead of analyzing files locally it's made on the premiers environment

• A. VCloud based
• B. Honypot based
• C. Behaviour based
• D. Heuristics based

Answer: A

NEW QUESTION 17
If a tester is attempting to ping a target that exists but receives no response or a response that states the destination is unreachable, ICMP may be disabled and the network may be using TCP. Which other option could the tester use to get a response from a host using TCP?

• A. Traceroute
• B. Hping
• C. TCP ping
• D. Broadcast ping

Answer: B

NEW QUESTION 18
Suppose your company has just passed a security risk assessment exercise. The results display that the risk of the breach in the main company application is 50%. Security staff has taken some measures and
implemented the necessary controls. After that, another security risk assessment was performed showing that risk has decreased to 10%. The risk threshold for the application is 20%. Which of the following risk decisions will be the best for the project in terms of its successful continuation with the most business profit?

• A. Accept the risk
• B. Introduce more controls to bring risk to 0%
• C. Mitigate the risk
• D. Avoid the risk

Answer: A

NEW QUESTION 19
In Trojan terminology, what is a covert channel?

• A. A channel that transfers information within a computer system or network in a way that violates the security policy
• B. A legitimate communication path within a computer system or network for transfer of data
• C. It is a kernel operation that hides boot processes and services to mask detection
• D. It is Reverse tunneling technique that uses HTTPS protocol instead of HTTP protocol to establish connections

Answer: A

NEW QUESTION 20
When discussing passwords, what is considered a brute force attack?

• A. You attempt every single possibility until you exhaust all possible combinations or discover the password
• B. You threaten to use the rubber hose on someone unless they reveal their password
• C. You load a dictionary of words into your cracking program
• D. You create hashes of a large number of words and compare it with the encrypted passwords
• E. You wait until the password expires

Answer: A

NEW QUESTION 21
......