Cyber Security Trivia Questions

116 Questions | Total Attempts: 333

Settings
Please wait...
Cyber Security Quizzes & Trivia

Security.


Questions and Answers
  • 1. 
    Which of the following elements of PKI are found in a browser's trusted root CA?
    • A. 

      Private key

    • B. 

      Public key

    • C. 

      Symetric key

    • D. 

      Recovery key

  • 2. 
    Which of the following protocols only encrypts password packets from client to server?
    • A. 

      XTACACS

    • B. 

      TACACS

    • C. 

      RADIUS

    • D. 

      TACACS+

  • 3. 
    Where are revoked certificates stored?     
    • A. 

      Recovery agent

    • B. 

      Key escrow

    • C. 

      CRL

    • D. 

      Registration

  • 4. 
    DRPs should contain which of the following?     
    • A. 

      Hierarchical list of non-critical personnel

    • B. 

      Hierarchical list of critical systems

    • C. 

      Hierarchical access control lists

  • 5. 
    A system administrator could have a user level account and an administrator account to prevent:     
    • A. 

      Password sharing

    • B. 

      Escalation of privelages

    • C. 

      Implicit deny

    • D. 

      Admin account lockout

  • 6. 
    Which of the following is the BEST way to mitigate data loss if a portable device is compromised?     
    • A. 

      Full disc encryption

    • B. 

      Common access card

    • C. 

      Password complexity

    • D. 

      Biometric authentication

  • 7. 
    Which of the following protocols should be blocked at the network perimeter to prevent host enumeration by sweep devices?     
    • A. 

      HTTPS

    • B. 

      SSH

    • C. 

      IPv4

    • D. 

      ICMP

  • 8. 
    Which of the following is specific to a buffer overflow attack
    • A. 

      Memory addressing

    • B. 

      Directory traversal

    • C. 

      Initial vector

    • D. 

      Session cookies

  • 9. 
    Which of the following asymmetric encryption keys is used to encrypt data to ensure only the intended recipient can decrypt the cipher text?     
    • A. 

      Private

    • B. 

      Escrow

    • C. 

      Public

    • D. 

      Pre-Shared

  • 10. 
    Which of the following should a security administrator implement to prevent users from disrupting network connectivity, if a user connects both ends of a network cable to different switch ports?     
    • A. 

      VLAN separation

    • B. 

      Access Control

    • C. 

      Loopback protection

    • D. 

      DMZ

  • 11. 
    • A. 

      Threat assessment

    • B. 

      Vulnerability assessment

    • C. 

      Code assessment

    • D. 

      Risk assessment

  • 12. 
    Which of the following requires special handling and explicit policies for data retention and data distribution?     
    • A. 

      Personally identifiable information

    • B. 

      Phishing attacks

    • C. 

      Zero day exploits

    • D. 

      Personal electronic devices

  • 13. 
    Centrally authenticating multiple systems and applications against a federated user database is an example of:     
    • A. 

      Smart Card

    • B. 

      Common Access Card

    • C. 

      Single sign on

    • D. 

      Access control list

  • 14. 
    WEP is seen as an unsecure protocol based on its improper use of which of the following?     
    • A. 

      RC6

    • B. 

      RC4

    • C. 

      3DES

    • D. 

      AES

  • 15. 
    Which of the following should be performed if a smartphone is lost to ensure no data can be retrieved from it?  
    • A. 

      Device Encryption

    • B. 

      Remote Wipe

    • C. 

      Screen Lock

    • D. 

      GPS Tracking

  • 16. 
    In an 802.11n network, which of the following provides the MOST secure method of both encryption and authorization?     
    • A. 

      WEP with 802.1x

    • B. 

      WPA enterprise

    • C. 

      WPA2 PSK

  • 17. 
    Which of the following methods of access, authentication, and authorization is the MOST secure by default?     
    • A. 

      Kerberos

    • B. 

      TACACS

    • C. 

      RADIUS

    • D. 

      LDAP

  • 18. 
    Which of the following facilitates computing for heavily utilized systems and networks? 
    • A. 

      Remote access

    • B. 

      Provider Cloud

    • C. 

      VPN Concentrator

    • D. 

      Telephony

  • 19. 
    With which of the following is RAID MOST concerned?     
    • A. 

      Integrity

    • B. 

      Confidentiality

    • C. 

      Availability

    • D. 

      Baselining

  • 20. 
    Which of the following reduces the likelihood of a single point of failure when a server fails?     
    • A. 

      Clustering

    • B. 

      Virtualization

    • C. 

      RAID

    • D. 

      Cold Site

  • 21. 
     A user downloads a keygen to install pirated software. After running the keygen, system performance is extremely slow and numerous antivirus alerts are displayed. Which of the following BEST describes this type of malware?     
    • A. 

      Logic Bomb

    • B. 

      Worm

    • C. 

      Trojan

    • D. 

      Adware

  • 22. 
    Which of the following is used in conjunction with PEAP to provide mutual authentication between peers
    • A. 

      LEAP

    • B. 

      MSCHAPv2

    • C. 

      PPP

    • D. 

      MSCHAPv1

  • 23. 
    A targeted email attack sent to the company's Chief Executive Officer (CEO) is known as which of the following?     
    • A. 

      Whaling

    • B. 

      Blue Snarfing

    • C. 

      Vishing

    • D. 

      Dumpster Diving

  • 24. 
    Which of the following uses TCP port 22 by default?     
    • A. 

      SSL SCP TFTP

    • B. 

      SSH SCP SFTP

    • C. 

      HTTPS TFTP SFTP

  • 25. 
    Actively monitoring data streams in search of malicious code or behavior is an example of:     
    • A. 

      Load balancing

    • B. 

      An internet proxy

    • C. 

      Url filtering

    • D. 

      Content inspection

  • 26. 
     A user is no longer able to transfer files to the FTP server. The security administrator has verified the ports are open on the network firewall. Which of the following should the security administrator check?     
    • A. 

      Antivirus Software

    • B. 

      ACLs

    • C. 

      NIDS

  • 27. 
    A Human Resource manager is assigning access to users in their specific department performing the same job function. This is an example of
    • A. 

      Role based access control.

    • B. 

      Rule based access control.

    • C. 

      Centralized access control.

  • 28. 
    Which of the following BEST describes the process of key escrow?     
    • A. 

      Maintains a copy of a user's public key for the sole purpose of recovering messages if it is

    • B. 

      Maintains a secured copy of a user's private key to recover the certificate revocation list

    • C. 

      Maintains a secured copy of a user's private key for the sole purpose of recovering the key if it is lost

  • 29. 
    Which of the following network devices would MOST likely be used to detect but not react to suspicious behavior on the network?     
    • A. 

      Firewall

    • B. 

      NIDS

    • C. 

      NIPS

  • 30. 
    Which of the following is an example of allowing a user to perform a self-service password reset?     
    • A. 

      Password Length

    • B. 

      Password Recovery

    • C. 

      Password Complexity

  • 31. 
    Which of the following wireless attacks uses a counterfeit base station with the same SSID name as a nearby intended wireless network?     
    • A. 

      War Driving

    • B. 

      Evil Twin

    • C. 

      Rogue Access Point

  • 32. 
    • A. 

      Run the image through a symmetric encryption algorithm.

    • B. 

      Compress the image to a password protected archive

    • C. 

      Run the image through SHA256.

  • 33. 
     Which of the following BEST explains the security benefit of a standardized server image?     
    • A. 

      All current security updates for the operating system will have already been applied.

    • B. 

      Mandated security configurations have been made to the operating system.

    • C. 

      Anti-virus software will be installed and current

  • 34. 
    Which of the following must a security administrator do when the private key of a web server has been compromised by an intruder?
    • A. 

      Submit the public key to the CRL.

    • B. 

      Use the recovery agent to revoke the key.

    • C. 

      Issue a new CA

  • 35. 
    The security administrator often observes that an employee who entered the datacenter does not match the owner of the PIN that was entered into the keypad. Which of the following would BEST prevent this situation?     
    • A. 

      Biometrics

    • B. 

      Multifactor Authentication

    • C. 

      Username and Password

  • 36. 
    A programmer allocates 16 bytes for a string variable, but does not adequately ensure that more than 16 bytes cannot be copied into the variable. This program may be vulnerable to which of the following attacks?     
    • A. 

      Buffer Overflow

    • B. 

      Cross-Site Scripting

    • C. 

      Session Hijacking

  • 37. 
    An administrator is updating firmware on routers throughout the company. Where should the administrator document this work
    • A. 

      Event Viewer

    • B. 

      Router's System Log

    • C. 

      Change Management System

  • 38. 
    The fundamental difference between symmetric and asymmetric key cryptographic systems is that symmetric key cryptography uses:     
    • A. 

      Multiple keys for non-repudiation of bulk data.

    • B. 

      Different keys on both ends of the transport medium.

    • C. 

      The same key on each end of the transmission medium

  • 39. 
    Which of the following is the primary purpose of using a digital signature? (Select TWO).
    • A. 

      Encryption

    • B. 

      Integrity

    • C. 

      Confidentiality

    • D. 

      Non-Repudiation

  • 40. 
    Which of the following allows a user to have a one-time password
    • A. 

      Biometrics

    • B. 

      SSO

    • C. 

      Tokens

  • 41. 
    Which of the following allows a security administrator to set device traps?     
    • A. 

      SNMP

    • B. 

      SSH

    • C. 

      ICMP

  • 42. 
    Which of the following is the BEST way to secure data for the purpose of retention
    • A. 

      Offsite Back up

    • B. 

      Virtualization

    • C. 

      Onsite Clustering

  • 43. 
    In which of the following locations would a forensic analyst look to find a hooked process?     
    • A. 

      BIOS

    • B. 

      Slack Space

    • C. 

      RAM

  • 44. 
    Several classified mobile devices have been stolen. Which of the following would BEST reduce the data leakage threat?     
    • A. 

      Use GPS Tracking to Find devices

    • B. 

      Use stronger encryption algorithms

    • C. 

      Remotely Sanitize devices

  • 45. 
    Which of the following is an example of requiring users to have a password of 16 characters or more?     
    • A. 

      Password Recovery Requirements

    • B. 

      Password Complexity Requirements

    • C. 

      Password Length Requirements

  • 46. 
    Which of the following devices provides storage for RSA or asymmetric keys and may assist in user authentication? (Select TWO).      
    • A. 

      Trusted Platform Module

    • B. 

      Hardware Security Module

    • C. 

      Facial Recognition Module

    • D. 

      Full Disc Encryption

  • 47. 
    A small company needs to invest in a new expensive database. The company's budget does not include the purchase of additional servers or personnel. Which of the following solutions would allow the small company to save money on hiring additional personnel and minimize the footprint in their current datacenter?     
    • A. 

      Allow Users to Telecommute

    • B. 

      Set up a Load Balancer

    • C. 

      Software As a Service

  • 48. 
    A security administrator needs to implement a site-to-site VPN tunnel between the main office and a remote branch. Which of the following protocols should be used for the tunnel?     
    • A. 

      RTP

    • B. 

      SNMP

    • C. 

      IPSec

  • 49. 
     When examining HTTP server logs the security administrator notices that the company's online store crashes after a particular search string is executed by a single external user. Which of the following BEST describes this type of attack?     
    • A. 

      Spim

    • B. 

      DDoS

    • C. 

      DoS

  • 50. 
    Which of the following MUST a programmer implement to prevent cross-site scripting?
    • A. 

      Validate input to remove shell scripts

    • B. 

      Validate input to remove hypertext

    • C. 

      Validate input to remove batch files

  • 51. 
    Which of the following is seen as non-secure based on its ability to only store seven uppercase characters of data making it susceptible to brute force attacks? 
    • A. 

      PAP

    • B. 

      LANMAN

    • C. 

      CHAP

  • 52. 
    Which of the following should be used to help prevent device theft of unused assets?
    • A. 

      HSM device

    • B. 

      Locking cabinet

    • C. 

      Device encryption

  • 53. 
    Which of the following security practices should occur initially in software development?     
    • A. 

      Secure Code Review

    • B. 

      Patch Management

    • C. 

      Fuzzing

  • 54. 
    Which of the following uses tickets to identify users to the network?    
    • A. 

      RADIUS

    • B. 

      LDAP

    • C. 

      Kerberos

  • 55. 
    Which of the following file transfer protocols is an extension of SSH?          
    • A. 

      FTP

    • B. 

      TFTP

    • C. 

      SFTP

  • 56. 
    Due to sensitive data concerns, a security administrator has enacted a policy preventing the use of flash drives. Additionally, which of the following can the administrator implement to reduce the risk of data leakage
    • A. 

      Enact a policy that all work files are to be password protected.

    • B. 

      Enact a policy banning users from bringing in personal music devices.

    • C. 

      Provide users with unencrypted storage devices that remain on-site.

  • 57. 
    The security administrator implemented privacy screens, password protected screen savers, and hired a secure shredding and disposal service. Which of the following attacks is the security administrator trying to mitigate? (Select TWO).      
    • A. 

      Whaling

    • B. 

      Dumpster Diving

    • C. 

      Shoulder Surfing

    • D. 

      Tailgating

  • 58. 
    Performing routine security audits is a form of which of the following controls
    • A. 

      Preventive

    • B. 

      Detective

    • C. 

      Protective

  • 59. 
    Which of the following web application security weaknesses can be mitigated by preventing the use of HTML tags?     
    • A. 

      LDAP injection

    • B. 

      SQL injection

    • C. 

      Cross Site Scripting

  • 60. 
    Which of the following access control technologies provides a rolling password for one-time use?     
    • A. 

      RSA Tokens

    • B. 

      ACL

    • C. 

      PIV card

  • 61. 
    Which of the following would be the BEST action to perform when conducting a corporate vulnerability assessment?     
    • A. 

      Document scan results for the change control board.

    • B. 

      Organize data based on severity and asset value.

    • C. 

      Examine the vulnerability data using a network analyzer

  • 62. 
    Which of the following would allow traffic to be redirected through a malicious machine by sending false hardware address updates to a switch?     
    • A. 

      ARP Poisoning

    • B. 

      DNS Spoofing

    • C. 

      MAC Spoofing

  • 63. 
    Which of the following devices would be installed on a single computer to prevent intrusion? 
    • A. 

      HOst intrustion detection

    • B. 

      Network firewall

    • C. 

      Host based firewall

  • 64. 
    Which of the following is a policy that would force all users to organize their areas as well as help in reducing the risk of possible data theft?     
    • A. 

      Password Behaviors

    • B. 

      Clean Desk Policy

    • C. 

      Data Handling

  • 65. 
    A penetration test shows that almost all database servers were able to be compromised through a default database user account with the default password. Which of the following is MOST likely missing from the operational procedures?     
    • A. 

      Application hardening

    • B. 

      OS hardening

    • C. 

      SQL injection

  • 66. 
    Isolation mode on an AP provides which of the following functionality types?     
    • A. 

      Segmentation of each wireless user from other wireless users

    • B. 

      Disallows all users from communicating directly with the AP

    • C. 

      Hides the service set identifier

  • 67. 
    Which of the following secure protocols is MOST commonly used to remotely administer Unix/Linux systems?     
    • A. 

      SSH

    • B. 

      SCP

    • C. 

      SNMP

  • 68. 
    Which of the following is MOST likely to be the last rule contained on any firewall?     
    • A. 

      Implicit Deny

    • B. 

      Separation of Duties

    • C. 

      Time of Day Restrictions

  • 69. 
    During the analysis of malicious code, a security analyst discovers JavaScript being used to send random data to another service on the same system. This is MOST likely an example of which of the following?     
    • A. 

      Buffer Overflow

    • B. 

      XML Injection

    • C. 

      SQL Injection

  • 70. 
    Which of the following is true about hardware encryption? (Select TWO).     
    • A. 

      It requires a HSM file system.

    • B. 

      It only works when data is not highly fragmented.

    • C. 

      It is faster than software encryption.

    • D. 

      It is available on computers using TPM.

  • 71. 
    Which of the following is an example of verifying new software changes on a test system?    
    • A. 

      User Access Control

    • B. 

      Patch Management

    • C. 

      Intrustion Prevention

  • 72. 
    Which of the following is a technical control?     
    • A. 

      Baseline configuration development

    • B. 

      Contingency planning

    • C. 

      Least privilege implementation

  • 73. 
    Public keys are used for which of the following?     
    • A. 

      Decrypting Wireless Messages

    • B. 

      Decrypting the hash of an electronic signature

    • C. 

      Bulk encryption of IP based email traffic

  • 74. 
     Which of the following penetration testing types is performed by security professionals with limited inside knowledge of the network?     
    • A. 

      Gray Box

    • B. 

      White Box

    • C. 

      Black Box

  • 75. 
    Which of the following devices BEST allows a security administrator to identify malicious activity after it has occurred
    • A. 

      Spam Filter

    • B. 

      IDS

    • C. 

      Firewall

  • 76. 
    Which of the following cloud computing concepts is BEST described as providing an easy-to-configure OS and on-demand computing for customers?     
    • A. 

      Platform as a Service

    • B. 

      Software as a Service

    • C. 

      Infrastructure as a Service

  • 77. 
    • A. 

      Separation of Duties

    • B. 

      Time of day restriction

    • C. 

      Access Control Lists

  • 78. 
    Which of the following environmental controls would BEST be used to regulate cooling within a datacenter?     
    • A. 

      Fire suppression

    • B. 

      Video monitoring

    • C. 

      Hot and cold aisles

  • 79. 
    Which of the following is used when performing a quantitative risk analysis?     
    • A. 

      Focus Groups

    • B. 

      Asset Value

    • C. 

      Surveys

  • 80. 
    Which of the following BEST describes the function of TPM?    
    • A. 

      High speed secure removable storage device

    • B. 

      Third party certificate trust authority

    • C. 

      Hardware chip that stores encryption keys

  • 81. 
    Which of the following PKI implementation element is responsible for verifying the authenticity of certificate contents?     
    • A. 

      CRL

    • B. 

      Key Escrow

    • C. 

      CA

  • 82. 
    Which of the following describes a passive attempt to identify weaknesses?     
    • A. 

      Vulnerability Scanning

    • B. 

      Zero Day Attack

    • C. 

      Port Scanning

  • 83. 
     The security administrator is getting reports from users that they are accessing certain websites and are unable to download anything off of those sites. The security administrator is also receiving several alarms from the IDS about suspicious traffic on the network. Which of the following is the MOST likely cause?  
    • A. 

      NIPS is blocking activities from those specific websites.

    • B. 

      NIDS is blocking activities from those specific websites

    • C. 

      The firewall is blocking web activity.

  • 84. 
    Which of the following should be enabled to ensure only certain wireless clients can access the network
    • A. 

      DHCP

    • B. 

      SSID Broadcast

    • C. 

      MAC Filtering

  • 85. 
    Which of the following is the BEST choice for encryption on a wireless network
    • A. 

      WPA2-PSK

    • B. 

      AES

    • C. 

      WPA

  • 86. 
    Which of the following will educate employees about malicious attempts from an attacker to obtain bank account information?     
    • A. 

      Password Complexity Requirements

    • B. 

      Phishing Techniques

    • C. 

      Handling PII

  • 87. 
    If a user wishes to receive a file encrypted with PGP, the user must FIRST supply the:     
    • A. 

      Public Key

    • B. 

      Recovery Agent

    • C. 

      Private Key

  • 88. 
    Which of the following is a reason to perform a penetration test?     
    • A. 

      To passively test security controls within the enterprise

    • B. 

      To identify all vulnerabilities and weaknesses within the enterprise

    • C. 

      To determine the impact of a threat against the enterprise

  • 89. 
    Which of the following methods BEST describes the use of hiding data within other files?     
    • A. 

      Digital Signatures

    • B. 

      PKI

    • C. 

      Transport Encryption

    • D. 

      Steganography

  • 90. 
    Which of the following BEST describes the proper method and reason to implement port security?     
    • A. 

      Apply a security control which ties specific ports to end-device MAC addresses and prevents additional devices from being connected to the network.

    • B. 

      Apply a security control which ties specific networks to end-device IP addresses and prevents new devices from being connected to the network.

    • C. 

      Apply a security control which ties specific ports to end-device MAC addresses and prevents all devices from being connected to the network.

  • 91. 
     Which of the following attacks is manifested as an embedded HTML image object or JavaScript image tag in an email?     
    • A. 

      Exception Handling

    • B. 

      Adware

    • C. 

      Cross Site Scripting

  • 92. 
    Which of the following is MOST likely to result in data loss?     
    • A. 

      Accounting transferring confidential staff details via SFTP to the payroll department.

    • B. 

      Back office staff accessing and updating details on the mainframe via SSH.

    • C. 

      Developers copying data from production to the test environments via a USB stick.

  • 93. 
    • A. 

      LANMAN

    • B. 

      MD5

    • C. 

      WEP

  • 94. 
    Which of the following concepts ensures that the data is only viewable to authorized users?     
    • A. 

      Availabilty

    • B. 

      Biometrics

    • C. 

      Confidentiality

  • 95. 
    Which of the following BEST describes an intrusion prevention system?     
    • A. 

      A system that stops an attack in progress

    • B. 

      A system that allows an attack to be identified.

    • C. 

      A system that logs the attack for later analysis

  • 96. 
    A user reports that their 802.11n capable interface connects and disconnects frequently to an access point that was recently installed. The user has a Bluetooth enabled laptop. A company in the next building had their wireless network breached last month. Which of the following is MOST likely causing the disconnections?     
    • A. 

      An attacker inside the company is performing a bluejacking attack on the user's laptop

    • B. 

      Another user's Bluetooth device is causing interference with the Bluetooth on the laptop.

    • C. 

      The new access point was mis-configured and is interfering with another nearby access point.

  • 97. 
    Risk can be managed in the following ways EXCEPT:         
    • A. 

      Mitigation

    • B. 

      Acceptance

    • C. 

      Elimination

  • 98. 
    A web application has been found to be vulnerable to a SQL injection attack. Which of the following BEST describes the required remediation action
    • A. 

      Change the server's SSL key and add the previous key to the CRL.

    • B. 

      Install a host-based firewall.

    • C. 

      Add input validation to forms.

  • 99. 
    While browsing the Internet, an administrator notices their browser behaves erratically, appears to download something, and then crashes. Upon restarting the PC, the administrator notices performance is extremely slow and there are hundreds of outbound connections to various websites. Which of the following BEST describes what has occurred?     
    • A. 

      The PC has become part of a botnet.

    • B. 

      The PC has become infected with spyware.

    • C. 

      The PC has become a spam host.

  • 100. 
    Which of the following is a best practice when securing a switch from physical access?     
    • A. 

      Disabl unecessary accounts

    • B. 

      Enable Access Lists

    • C. 

      Disable unused Ports

  • 101. 
     Which of the following is an example of requiring users to have a password of 16 characters or more?     
    • A. 

      Password recovery

    • B. 

      Password complixity

    • C. 

      Password Length

  • 102. 
    In which of the following locations would a forensic analyst look to find a hooked process?       
    • A. 

      BIOS

    • B. 

      Slack Space

    • C. 

      RAM

  • 103. 
    Which of the following secure protocols is MOST commonly used to remotely administer Unix/Linux systems?       
    • A. 

      SSH

    • B. 

      SCP

    • C. 

      SFTP

  • 104. 
    Centrally authenticating multiple systems and applications against a federated user database is an example of:       
    • A. 

      Smart Card

    • B. 

      Common Access Card

    • C. 

      Single Sign On

  • 105. 
    A security administrator is asked to email an employee their password. Which of the following account policies MUST be set to ensure the employee changes their password promptly?       
    • A. 

      Password Expiration

    • B. 

      Account Lockout

    • C. 

      Password Recovery

  • 106. 
    Which of the following BEST describes an intrusion prevention system?       
    • A. 

      A system that stops an attack in progress.

    • B. 

      A system that allows an attack to be identified

    • C. 

      A system that logs the attack for later analysis.

  • 107. 
    Isolation mode on an AP provides which of the following functionality types 
    • A. 

      Segmentation of each wireless user from other wireless users

    • B. 

      Disallows all users from communicating directly with the AP

    • C. 

      Makes the router invisible to other routers

  • 108. 
    The security administrator is getting reports from users that they are accessing certain websites and are unable to download anything off of those sites. The security administrator is also receiving several alarms from the IDS about suspicious traffic on the network. Which of the following is the MOST likely cause?       
    • A. 

      NIPS is blocking activities from those specific websites.

    • B. 

      NIDS is blocking activities from those specific websites.

    • C. 

      The router is denying all traffic from those sites

  • 109. 
    Data can potentially be stolen from a disk encrypted, screen-lock protected, smartphone by which of the following?       
    • A. 

      Bluesnarfing

    • B. 

      IV attack

    • C. 

      Honeypot

  • 110. 
    Which of the following access control technologies provides a rolling password for one-time use?       
    • A. 

      RSA Tokens

    • B. 

      ACL

    • C. 

      PIV Card

  • 111. 
    A purpose of LDAP authentication services is:       
    • A. 

      To implement mandatory access controls.

    • B. 

      A single point of user management.

    • C. 

      To prevent multifactor authentication

  • 112. 
    Which of the following web application security weaknesses can be mitigated by preventing the use of HTML tags?       
    • A. 

      LDAP injection

    • B. 

      SQL injection

    • C. 

      Cross site scripting

  • 113. 
    Which of the following allows an attacker to identify vulnerabilities within a closed source software application?       
    • A. 

      Fuzzing

    • B. 

      Compiling

    • C. 

      Code Reviews

  • 114. 
    Which of the following should the security administrator look at FIRST when implementing an AP to gain more coverage?       
    • A. 

      Encryption Methods

    • B. 

      Power levels

    • C. 

      SSID

  • 115. 
    Which of the following is a reason to perform a penetration test?         
    • A. 

      To passively test security controls within the enterprise

    • B. 

      To provide training to white hat attackers

    • C. 

      To determine the impact of a threat against the enterprise

  • 116. 
    Which of the following would an administrator do to ensure that an application is secure and all unnecessary services are disabled?       
    • A. 

      Baselining

    • B. 

      Application Hardening

    • C. 

      Patch Management