ITN 260 Module 8 Review

¡Supera tus tareas y exámenes ahora con Quizwiz!

Which of the following does NOT describe an area that separates threat actors from defenders? a. Air gap b. DMZ c. Containment space d. Secure area

Containment Space

Tomaso is explaining to a colleague the different types DNS attacks. Which DNS attack would only impact a single user? a. DNS overflow attack b. DNS resource attack c. DNS poisoning attack d. DNS hijack attack

DNS poisoning attack

Which of the following is NOT a reason that threat actors use PowerShell for attacks? a. Most applications flag it as a trusted application. b. It leaves behind no evidence on a hard drive. c. It cannot be detected by antimalware running on the computer. d. It can be invoked prior to system boot.

It can be invoked prior to system boot.

Which utility sends custom TCP/IP packets? a. shape b. pingpacket c. hping d. cur

hping

Which of the following is a third-party OS penetration testing tool? a. theHarvester b. Nessus c. sn1per d. scanless

sn1per

What is the difference between a DoS and a DDoS attack? a. DoS attacks use more memory than DDoS attacks. b. DoS attacks do not use DNS servers as DDoS attacks do. c. DoS attacks are faster than DDoS attacks. d. DoS attacks use fewer computers than DDoS attacks.

DoS attacks use fewer computers than DDoS attacks.

Eros wants to change a configuration file on his Linux computer. He first wants to display the entire file contents. Which tool would he use? a. show b. display c. head d. cat

cat

Calix was asked to protect a system from a potential attack on DNS. What are the locations he would need to protect? a. Web server buffer and host DNS server b. Host table and external DNS server c. Reply referrer and domain buffer d. Web browser and browser add-on

Host table and external DNS server

Which of the following is NOT true about VBA? a. It is commonly used to create macros. b. It is included in select non-Microsoft products. c. It is built into most Microsoft Office applications. d. It is being phased out and replaced by PowerShell.

It is being phased out and replaced by PowerShell

Deacon has observed that the switch is broadcasting all packets to all devices. He suspects it is the result of an attack that has overflowed the switch MAC address table. Which type of attack is this? a. MAC spoofing attack b. MAC cloning attack c. MAC flooding attack d. MAC overflow attack

MAC flooding attack

Which attack intercepts communications between a web browser and the underlying OS? a. Interception b. Man-in-the-browser (MITB) c. DIG d. ARP poisoning

Man-in-the-browser (MITB)

Theo uses the Python programming language and does not want his code to contain vulnerabilities. Which of the following best practices would Theo NOT use? a. Download only vetted libraries. b. Use caution when formatting strings. c. Use the latest version of Python. d. Only use compiled and not interpreted Python code.

Only use compiled and not interpreted Python code.

Proteus has been asked to secure endpoints that can be programmed and have an IP address so that they cannot be used in a DDoS attack. What is the name for this source of DDoS attack? a. Network b. IoT c. Application d. Operational Technology

Operational Technology

Which of the following sensors can detect an object that enters the sensor's field? a. Field detection b. Object recognition c. Proximity d. IR verification

Proximity

What is the result of an ARP poisoning attack? a. MAC addresses are altered. b. An internal DNS must be used instead of an external DNS. c. The ARP cache is compromised. d. Users cannot reach a DNS server.

The ARP cache is compromised.

What is Bash? a. The underlying platform on which macOS is built b. The command-language interpreter for Linux/UNIX OSs c. The open source scripting language that contains many vulnerabilities d. A substitute for SSH

The command-language interpreter for Linux/UNIX OSs

Estevan has recommended that the organization hire and deploy two security guards in the control room to limit the effect if one of the guards has been compromised. What is Estevan proposing? a. Dual observation protocol (DOP) b. Multiplayer recognition c. Compromise mitigation assessment (CMA) d. Two-person integrity/control

Two-person integrity/control

Which of the following is a tool for editing packets and then putting the packets back onto the network to observe their behavior?' a. Packetdump b. Wireshark c. Tcpdump d. Tcpreplay

Unknown

Gregory wants to look at the details about the patch a packet takes from his Linux computer to another device. Which Linux command-line utility will he use? a. traceroute b. trace c. tracert d. tracepacket

traceroute

Which of the following is NOT a Microsoft defense against macros? a. Trusted domain b. Trusted documents c. Trusted location d. Protected View

ITN 260 Module 8 Review

Conjuntos de estudio relacionados

Chapter 10- Conflict

Quiz one insurance

Logic practice test 1

Lección 3: Puedo decir mi nombre de usuario para mis cuentas

Physics 7.1 Quiz (3/4/21)

Statistics Vocabulary 3.2

NCLEX Ch 33

Final - Chapters Combined

Types of Life Policies

Ch 3 Med Surg

Series 3: Life Insurance Basics

HIPAA quiz

Consecutive Integer Problems

Life Policy Options

Money and Banking Chapter 4

Care of the High Acuity Client Exam 2

Vocab Learning

A&P I: Thorax Region, Ribs

Chapters 1-6 Test Review Questions

405- Ch3