NVST TEST 4

1.

1 point

The Transmission Control Protocol/Internet Protocol (TCP/IP) protocal that handles outgoing mail using port 25 is ______.

Internet Mail Access Protocol (IMAP)

Simple Mail Transfer Protocol (SMTP)

Secure/Multipurpose Internet Mail Extensions (S/MIME)

Post Office Protocol (POP)

2.

1 point

Which of the following represent the pool of well-known ports?

0 through 49151

0 through 1023

0 through 255

1024 through 49151

3.

1 point

*Which of the following is the process of identifying and reducing risk to a level that is comfortable and then implementing controls to maintain that level?

c) Risk analysis

b) Risk

d) Risk management

a) Return on investment

4.

1 point

Under Phase of Attacks, DoS (Denial-of-Service) Attack is considered as which phase?

b) Scanning;

c) Gaining Access;

d) Maintain Access;

a) Reconnaissance;

5.

1 point

Which of the following advantages are associated with using a firewall?

It is used to hide the internal addressing scheme of the network.

It is used to monitor the use of Internet by internal users.

It is used to block undersired external access to internal network resources.

It provides an inexpensive meansto share the Internet connection.

6.

1 point

After running John the Ripper, the cracked password is stored in a local file called ________.

John.pot

Password.pot

Crack.pot

Ripper.pot

7.

1 point

Which of the following statements is FALSE about Risk Management?

Risk can be qualitatively defined in three levels: Low, Medium and High

Risk management determines the value of the resources and the level of security for it

Risk Management is about Security

Threat + Vulnerability = Risk

8.

1 point

*TCP/IP family of protocols includes several components:
i. Transmission Control Protocol (TCP);
ii. User Datagram Protocol (UDP);
iii. Internet Protocol (IP);
iv. Internet Control Message Protocol (ICMP)

a) i and ii;

b) ii and iii;

c) i, ii and iii;

d) i, ii, iii and iv.

9.

1 point

*Which of the following measures can be used to defend against Network Mapping?
i. Filter out the underlying message that network mapping tools rely on by using firewalls and the packet filtering router;
ii. Block incoming ICMP message;
iii. Filter ICMP_TIME_EXCEEDED messages leaving your network to stymie an attacker using traceroute;
iv. To prevent an attacker from discovering open ports on your
machine is to close all unused ports

a) i and ii;

b) ii and iii;

c) i, ii and iii;

d) i, ii, iii and iv.

10.

1 point

Illegal or unauthorized zone transfers are a significant and direct threat to what type of network server?

a) Web

c) DNS

b) DHCP

d) Database

11.

1 point

Which type of Buffer Overflow Exploits allows attacker to access the system as an impersonated root user?

Stack-based Buffer Overflow

Program Buffer Overflow

Heap Overflow

Memory buffer Overflow

12.

1 point

*Which of the following statement is FALSE about ICMP (Internet Control Message Protocol)?

a) ICMP was essentially designed for the troubleshooting of routing and connectivity issues in IP networks

d) ICMP message types reply from the target provide a great deal of information to hackers

c) ICMP manipulates the time-to-live (TTL) option in UDP packets

b) ICMP “mapping” is often conducted via a ping sweep

13.

1 point

Which of the following is the best option for a network administrator to prevent attacker to figure out users' IDs or password?

b) URL Session Tracking

a) Session Hijacking

d) Hidden form elements

c) Disable cookies

14.

1 point

The File Transfer Protocol (FTP) can be accessed by each of the following except ________.

Web browser

LPTP server

FTP client

command line

15.

1 point

*Internet search engines are used by attacker because they provide the following facilities except ________.

Hyperlinks

Internet directories

Link crawlers

Caches

16.

1 point

*Which of the following are TRUE about a Script Kiddie?
i. With low-level hacking skills
ii. Use released tools and software to exploit without understanding the underlying vulnerability
iii. Biggest group of attackers and usually rather immature
iv. Use Social Engineering technique

a. i, ii and iii;

b. i, ii and iv;

c. ii, iii and iv;

d. i, ii, iii and iv.

17.

1 point

*To prevent an attacker from discovering open ports on your machine is to _______.

hide all ports

terminate services on open ports

close all unused ports

assign strong passwords to all ports

18.

1 point

General types of reconnaissance data can be obtained from Internet are:
i. Employee data
ii. Business partner
iii. Existing technologies
iv. Financial information

i, ii and iii;

i, ii and iv;

ii, iii and iv;

i, ii, iii and iv

19.

1 point

Which software tool can be used for cracking window95, window98, SQL2000, Cisco PIX, and router's MD5 hashes?

Super Cracker

Cain

John the Ripper

Brutus

20.

1 point

You are the security administrator for a bank. The users are complaining about the network being slow. However, it is not a particularly busy time of the day. You capture network packets and discover that hundreds of ICMP packets have been sent to the host. What type of attack is likely being executed against your network?

DNS kiting

Man-in-the-middle

Spoofing

Denial of service