NVST TEST 5

1.

1 point

Which of the following is FALSE about User Datagram Protocol (UDP)?

It is connection protocol

No packet lost retransmission

Packet transmitted does not put in order

No acknowledgement or session tear down required

2.

1 point

Each machine with a TCP/IP stack has ______ TCP ports and ______ UDP ports.

65536 and 32768

32768 and 65536

65536 and 65536

32768 and 32768

3.

1 point

Which of the following is an advantage of using virtual machines?

Helps secure the hardware from unauthorized access.

Allows an OS to run in its own separate, secure area on a system.

Anti-virus software has to be installed only once.

Reduces the need to install OS software updates.

4.

1 point

Which of the following statements is FALSE about the key terms used in the risk management process?

A Threat is a resouce can be accessed by making use of a vulnerability in your environment

A Vulnerable is a point where a resource is susceptible to attack

Countermeasures are deployed to counteract threats and vulnerabilities, therefore reducing the risk in your environment

A Resource is anything in an environment that trying to protect

5.

1 point

Each of the following is intended to protect information except __________.

confidentiality

equipment

policies

people

6.

1 point

A port scanner has reported that your web server running with a supporting SQL database is listening on TCP ports 80, 443, 21, and 1433. Which of these ports is unnecessary and should be closed to prevent hacking attempts?

80

1433

443

21

7.

1 point

Which of the following is not a feature or capability of a port scanner?

Determine open ports

Determine target OS

Determine active services

Determine weakness of OS

8.

1 point

IP resides at which layer of the OSI model?

Application

Network

Data Link

Physical

9.

1 point

*An attacker with low skill level is called?

Script Kiddie

Cracker

Hacker

Phreaker

10.

1 point

An attacker normally takes inventory of which type of ports on the system?

well done ports.

unsecured ports.

open ports.

easy ports.

11.

1 point

Attacker can ask the server to send all information it has about a given domain through requesting a ________ from the name server.

nslookup

domain transfer

display all

zone transfer

12.

1 point

*Each of the following protocols can be used to encrypt transmissions over the Internet except _________.

Common Gateway Interface (CGI)

FORTEZZA

Secure Sockets Layer (SSL)

Personal Communications Technology (PCT)

13.

1 point

The following are useful data elements from the Registrar of Whois Search except _______.

Name servers

Names

Registration dates

Hardware models

14.

1 point

A host has an IP address of 128.78.3.2. The network is subnetted by borrowing the first 3 bits of host address bits. What is the subnet mask for 128.78.3.2?

255.255.255.224

255.255.224.0

255.255.224.255

255.255.0.0

15.

1 point

*The following are commonly used techniques for reconnaissance except ________.

Whois database analysis (PCT)

High performance hardware

Low-technology reconnaissance

Web searches

16.

1 point

_______ is the interception of network data not intended for the machine that is intercepting the traffic.

Packet stealing

Packet spoofing

Packet sniffing

Packet engineering

17.

1 point

A person wishing to prevent users from accessing a web server and the information on it would try a ____ attack.

internet service

denial of service

web service

system service

18.

1 point

The qualities and characteristics of the network traffic generated by Nmap's ping scan are called its _________.

scan profile

Signature

stealth

socket

19.

1 point

*What does an attacker do in Reconnaissance Phase?
i. An attacker seeks to gather as much information as possible about a target of evaluation prior to launching an attack
ii. The core of Reconnaissance attack is intrusive information gathering techniques
iii. System is breached or accessed in order to retrieve information

i only;

i and ii;

i, ii and iii;

None of the above.

20.

1 point

Which of the following IP address class is reserved for future use?

Class C

Class A

Class E

Class D

21.

1 point

*What is the name of the unique physical address that is assigned to every network interface card?

NetBIOS name

IP address

MAC address

Hostname

22.

1 point

*Which of the following is not a well known TCP port number?

53

8888

80

25

23.

1 point

Attackers known as ____________ like to think of themselves as an elite group who are performing a valuable service in identifying security weaknesses.

crackers

hackers

denial of servicescript kiddies

cyberterrorists

24.

1 point

A(n) __________ is a weakness that allows a threat agent to bypass security.

risk

mitigation

vulnerability

exploit

25.

1 point

You connected your company to the Internet, and security is a concern. What should you install?

Firewall

DNS

Switches

Higher-quality servers