NVST quiz 1 (1-30)

1.

1 point

For DoS (Denial-of-Service) Attack, Resource Exhaustion can be achieved by:
i. Spawning processes to fill the process table
ii. Filling up the whole file system
iii. Packet floods
iv. Malformed packet attacks

i, iii and iv

i, ii and iv

i, ii, iii and iv

i, ii and iii

2.

1 point

Which application analyses surfer's shopping habits, interests and inserts Pop-up advertisement?

Bots

Gaobot

Spyware

Remote Control Programs

3.

1 point

Which of the following is not one of the IP address ranges reserved for private use by RFC 1918?

Telephone numbers

169.254.0.0-169.254.255.255

192.168.0.0-192.168.255.255

10.0.0.0-10.255.255.255

4.

1 point

Which method is NOT used as maintaining access attacks?

Trojan Horses

Backdoors

Rootkits

Big Worms

5.

1 point

The purpose of port scanning is systematically scan for range of ____.

opened ports at the target system.

protected ports at the target system.

closed ports at the target system.

active ports that are running application services at the target system.

6.

1 point

Which of the following event file is used to stores security-related events like failed logon attempts, policy changes, and attempts to access files without proper permission in Windows system?

SECEVENT.EVT

APPEVENT.EVT

SYSEVENT.EVT

ILE.EVT

7.

1 point

Which information directory protocol is the standard for file transfer over the Internet?

FTP

TCP

UDP

HTTP

8.

1 point

The following are payloads provided by Metasploit to foist on the target machine except _____.

Create new user accounts

Inject DLL into running application

Windows VNC Server DLL Inject

Bind shell to current port

9.

1 point

What type of attack attempts to use every possible key until the correct key is found?

Denial-of-service attack

Brute-force attack

Private key cryptography

Passive attack

10.

1 point

Which of the followings are the common techniques used by sophisticated hacker for covering track and hiding in a compromised system?
i. Hiding evidence by altering event logs;
ii. Creating difficult to find files and directories;
iii. Hiding evidence on the network: Covert Channels;
iv. Deleting log files.

i, ii and iii

i, ii, iii and iv

i, ii and iv

ii, iii and iv

11.

1 point

The TCP/IP adheres roughly to the following protocol layers except _________.

little interaction with Data Link (Layer 2)

Physical (Layer 1)

Network (Layer 3)

Transport (Layer 4)

12.

1 point

Which of the following is the correct sequence for OSI (Open Systems Interconnection) seven layers?

Physical Layer, Data Link Layer, Transport Layer, Network Layer, Session Layer, Presentation Layer and Application Layer

Physical Layer, Network Layer, Transport Layer, Data Link Layer, Session Layer, Presentation Layer and Application Layer

Physical Layer, Data Link Layer, Network Layer, Transport Layer, Session Layer, Presentation Layer and Application Layer

Physical Layer, Network Layer, Data Link Layer, Transport Layer, Session Layer, Presentation Layer and Application Layer

13.

1 point

The following are methods employed to uncover system vulnerabilities except ______.

Traffic monitoring

Vulnerability scanning

IP Address scanning

Manual vulnerability probing

14.

1 point

Which of the following information cannot generally be found from the target’s Internet Registrar?

Company’s postal addresses

Customer information

Administrative, technical, and billing contact names

Telephone numbers

15.

1 point

Which of the following troubleshooting utilities is common to all operating systems and is used for testing connectivity of two hosts on a network?

nslookup

ipconfig

tracert

ping

16.

1 point

Identify which category of Denial-of-Service attack if the attack is Smurf.

Locally exhausting resources

Locally stopping services

Remotely exhausting resources

Remotely stopping services

17.

1 point

What is hybrid password cracking?

crack password based on dictionary form.

crack password by guessing every possible combination of characters.

crack password based on hybrid characters.

crack password by using a combination of limited dictionary cracks and brute force cracking.

18.

1 point

Ethereal is a software tool used to ______ between client and server machine.

transfer data and files

test the physical connection

observe the packets sent and received

test the functionality of ethernet adaptors

19.

1 point

An attacker can gain access to very sensitive information about an organisation through the following except _________.

Physical break-in

Social engineering

Dumpster diving

software engineering

20.

1 point

Which of the following is the correct sequence of phases of hacker’s attack?

Reconnaissance, Gaining Access, Maintaining Access, Scanning, Clearing Tracks;

Reconnaissance, Maintaining Access, Scanning, Gaining Access, Clearing Tracks;

Scanning, Reconnaissance, Gaining Access, Maintaining Access, Clearing Tracks;

Reconnaissance, Scanning, Gaining Access, Maintaining Access, Clearing Tracks;

21.

1 point

A situation in which a program or process attempts to store more data in a temporary data storage area than it was intended to hold is known as a what?

Distributed denial of service

Storage overrun

Buffer overflow

Denial of service

22.

1 point

Which of the following protocols should be disabled on a critical network device such as a router?

ICMP

IPX/SPX.

RIP

TCP/IP.

23.

1 point

What is the information can be gathered by an attacker by typing the
following command using Netcat? C:> nc www.sp.edu.sg 80 HEAD / HTTP/1.0

Administrative Contact Number

Web Server version

Netblock Owner

Domain Name

24.

1 point

Which of the following statements are TRUE about Computer Misuse Act (Cap 50A)?
i. Any police officer may arrest without warrant any person reasonably suspected of committing an offence under this Act
ii. Any person who knowingly causes a computer to perform any function for the purpose of securing access without authority to any program or data held in any computer shall be guilty of an offence
iii. Any person who causes a computer to perform any function for the purpose of securing access to any program or data held in any computer with intent to commit an offence to which this section applies shall be guilty of an offence.
iv. Any person who does any act which he knows will cause an unauthorised modification of the contents of any computer shall be guilty of an offence

ii, iii and iv

i, ii and iii

i, ii and iv

i, ii, iii and iv

25.

1 point

Which of the followings are TRUE about Smurf Attack?
i. Smurf attack also known as directed broadcast attack
ii. Smurf attacks rely on a directed broadcast to create a flood of traffic for a victim
iii. A perpetrator sends a large amount of ICMP echo (ping) traffic at IP broadcast addresses, all of it having a spoofed source address of a victim

i and ii;

i and iii;

ii and iii;

i, ii and iii.

26.

1 point

Which of the following protocols is responsible for addressing hosts in a TCP/IP-based network?

UDP

TCP

DHCP

IP

27.

1 point

Which of the following is Not the correct defense method against User-Mode Rootkits?

Install Tripwire.

Never let attackers get Administrator right to the system.

Install latest operating system patches.

Install MD5 & SHA-1.

28.

1 point

If the attack is SYN flood, which of the following category of Denial-of-Service attack it belong to?

Locally exhausting resources

Locally stopping services

Remotely stopping services

Remotely exhausting resources

29.

1 point

Which of the following NOT common activity for Scanning?

Dumpster Diving

War Dialling

Port Scanning

Network Mapping

30.

1 point

A type of software that repairs security flaws in an application is called a(n) ________.

exploit

repair

hot fix

patch