NEW QUESTION 1
Which of the following statements is true about the LM hash?

• A. Disabled in Windows Vista and 7 OSs
• B. Separated into two 8-character strings
• C. Letters are converted to the lowercase
• D. Padded with NULL to 16 characters

Answer: A

NEW QUESTION 2
Which type of vulnerability assessment tool provides security to the IT system by testing for vulnerabilities in the applications and operation system?

• A. Active/Passive Tools
• B. Application-layer Vulnerability Assessment Tools
• C. Location/Data Examined Tools
• D. Scope Assessment Tools

Answer: D

NEW QUESTION 3
Variables are used to define parameters for detection, specifically those of your local network and/or specific servers or ports for inclusion or exclusion in rules. These are simple substitution variables set with the var keyword.
Which one of the following operator is used to define meta-variables?

• A. “$”
• B. “#”
• C. “*”
• D. “?”

Answer: A

NEW QUESTION 4
After passively scanning the network of Department of Defense (DoD), you switch over to active scanning to identify live hosts on their network. DoD is a large organization and should respond to any number of scans. You start an ICMP ping sweep by sending an IP packet to the broadcast address.
Only five hosts responds to your ICMP pings; definitely not the number of hosts you were expecting. Why did this ping sweep only produce a few responses?

• A. A switched network will not respond to packets sent to the broadcast address
• B. Only IBM AS/400 will reply to this scan
• C. Only Unix and Unix-like systems will reply to this scan
• D. Only Windows systems will reply to this scan

Answer: C

NEW QUESTION 5
A framework for security analysis is composed of a set of instructions, assumptions, and limitations to analyze and solve security concerns and develop threat free applications.
Which of the following frameworks helps an organization in the evaluation of the company’s information security with that of the industrial standards?

• A. Microsoft Internet Security Framework
• B. Information System Security Assessment Framework
• C. The IBM Security Framework
• D. Nortell’s Unified Security Framework

Answer: B

NEW QUESTION 6
Which of the following policies states that the relevant application owner must authorize requests for additional access to specific business applications in writing to the IT Department/resource?

• A. Special-Access Policy
• B. User Identification and Password Policy
• C. Personal Computer Acceptable Use Policy
• D. User-Account Policy

Answer: B

NEW QUESTION 7
Tyler is setting up a wireless network for his business that he runs out of his home. He has followed all the directions from the ISP as well as the wireless router manual. He does not have any encryption set and the SSID is being broadcast.
On his laptop, he can pick up the wireless signal for short periods of time, but then the connection drops and the signal goes away. Eventually the wireless signal shows back up, but drops intermittently.
What could be Tyler issue with his home wireless network?

• A. 2.4 Ghz Cordless phones
• B. Satellite television
• C. CB radio
• D. Computers on his wired network

Answer: A

NEW QUESTION 8
In which of the following firewalls are the incoming or outgoing packets blocked from accessing services for which there is no proxy?

• A. Circuit level firewalls
• B. Packet filters firewalls
• C. Stateful multilayer inspection firewalls
• D. Application level firewalls

Answer: D

NEW QUESTION 9
Which among the following information is not furnished by the Rules of Engagement (ROE) document?

• A. Techniques for data collection from systems upon termination of the test
• B. Techniques for data exclusion from systems upon termination of the test
• C. Details on how data should be transmitted during and after the test
• D. Details on how organizational data is treated throughout and after the test

Answer: A

NEW QUESTION 10
A WHERE clause in SQL specifies that a SQL Data Manipulation Language (DML) statement should only affect rows that meet specified criteria. The criteria are expressed in the form of predicates. WHERE clauses are not mandatory clauses of SQL DML statements, but can be used to limit the number of rows affected by a SQL DML statement or returned by a query.

A pen tester is trying to gain access to a database by inserting exploited query statements with a WHERE clause. The pen tester wants to retrieve all the entries from the database using the WHERE clause from a particular table (e.g. StudentTable).
What query does he need to write to retrieve the information?

• A. EXTRACT* FROM StudentTable WHERE roll_number = 1 order by 1000
• B. DUMP * FROM StudentTable WHERE roll_number = 1 AND 1=1—
• C. SELECT * FROM StudentTable WHERE roll_number = '' or '1' = '1‘
• D. RETRIVE * FROM StudentTable WHERE roll_number = 1'#

Answer: C

NEW QUESTION 11
Which of the following password hashing algorithms is used in the NTLMv2 authentication mechanism?

• A. AES
• B. DES (ECB mode)
• C. MD5
• D. RC5

Answer: C

NEW QUESTION 12
Which of the following scan option is able to identify the SSL services?

• A. –sS
• B. –sV
• C. –sU
• D. –sT

Answer: B

NEW QUESTION 13
Firewall is an IP packet filter that enforces the filtering and security policies to the flowing network traffic. Using firewalls in IPv6 is still the best way of protection from low level attacks at the network and transport layers.
Which one of the following cannot handle routing protocols properly?

• A. “Internet-router-firewall-net architecture”
• B. “Internet-firewall-router-net architecture”
• C. “Internet-firewall/router(edge device)-net architecture”
• D. “Internet-firewall -net architecture”

Answer: B

NEW QUESTION 14
George is a senior security analyst working for a state agency in Florida. His state's congress just passed a bill mandating every state agency to undergo a security audit annually. After learning what will be required, George needs to implement an IDS as soon as possible before the first audit occurs.
The state bill requires that an IDS with a "time-based induction machine" be used. What IDS feature must George implement to meet this requirement?

• A. Pattern matching
• B. Statistical-based anomaly detection
• C. Real-time anomaly detection
• D. Signature-based anomaly detection

Answer: C

NEW QUESTION 15
Kyle is performing the final testing of an application he developed for the accounting department. His last round of testing is to ensure that the program is as secure as possible. Kyle runs the following command. What is he testing at this point?
include <stdio.h>
#include <string.h>
int main(int argc, char *argv[])
{
char buffer[10]; if (argc < 2)
{
fprintf(stderr, "USAGE: %s stringn", argv[0]); return 1;
}
strcpy(buffer, argv[1]); return 0;
}

• A. Buffer overflow
• B. Format string bug
• C. Kernal injection
• D. SQL injection

Answer: A

NEW QUESTION 16
In Linux, what is the smallest possible shellcode?

• A. 800 bytes
• B. 8 bytes
• C. 80 bytes
• D. 24 bytes

Answer: D

NEW QUESTION 17
What is the target host IP in the following command?

• A. Firewalk does not scan target hosts
• B. 172.16.28.95
• C. This command is using FIN packets, which cannot scan target hosts
• D. 10.10.150.1

Answer: A

NEW QUESTION 18
Which of the following is developed to address security concerns on time and reduce the misuse or threat of attacks in an organization?

• A. Vulnerabilities checklists
• B. Configuration checklists
• C. Action Plan
• D. Testing Plan

Answer: A

NEW QUESTION 19
Wireless communication allows networks to extend to places that might otherwise go untouched by the wired networks. When most people say ‘Wireless’ these days, they are referring to one of the 802.11 standards. There are three main 802.11 standards: B, A, and G.
Which one of the following 802.11 types uses DSSS Modulation, splitting the 2.4ghz band into channels?

• A. 802.11b
• B. 802.11g
• C. 802.11-Legacy
• D. 802.11n

Answer: A

NEW QUESTION 20
Meyer Electronics Systems just recently had a number of laptops stolen out of their office. On these laptops contained sensitive corporate information regarding patents and company strategies.
A month after the laptops were stolen, a competing company was found to have just developed products that almost exactly duplicated products that Meyer produces.
What could have prevented this information from being stolen from the laptops?

• A. SDW Encryption
• B. EFS Encryption
• C. DFS Encryption
• D. IPS Encryption

Answer: B

NEW QUESTION 21
By default, the TFTP server listens on UDP port 69. Which of the following utility reports the port status of target TCP and UDP ports on a local or a remote computer and is used to troubleshoot TCP/IP connectivity issues?

• A. PortQry
• B. Netstat
• C. Telnet
• D. Tracert

Answer: A

NEW QUESTION 22
......