NVST quiz 2 (31- 60)

1.

1 point

Which of the following SuperScan4's tool is used to uncover the users account list?

Scan Options

Users Discovery

Windows Enumeration

Host and Service Discovery

2.

1 point

Which of the following are the basic types of hackers attack?
i. Denial of Service Attack
ii. Repudiation Attack
iii. Access Attack
iv. Modification Attack

i, ii and iv

i, iii and iv

i, ii, iii and iv

i, ii and iii

3.

1 point

Which of the following is a class C address?

193.10.160.45

168.28.10.165

92.200.138.24

128.10.54.120

4.

1 point

Which of the following event file is used to stores events associated with the systems functioning e.g. failure of a driver or inability of a service to start in Windows system?

SECEVENT.EVT

APPEVENT.EVT

FILE.EVT

SYSEVENT.EVT

5.

1 point

The most important elements of Google’s technology are:
i. The Google bots
ii. The Google index
iii. The Google cache
iv. The Google API

i, ii and iii

ii, iii and iv

i, ii and iv

i, ii, iii and iv

6.

1 point

Most Application-layer protocols only use UDP or TCP at the Transport layer. Which of the following could use both?

TCP

Telnet

Microsoft Word

DNS

7.

1 point

Which of the following is the type of algorithm used by MD5?

Asymmetric encryption algorithm

Block cipher algorithm

Hashing algorithm

Cryptographic algorithm

8.

1 point

The exploitation of resources can be performed in many ways. Some of the more common ways are:
i. Technical Vulnerability Exploitation
ii. Denial of Service
iii. Information Gathering
iv. Social Engineering

i and ii

i, ii, iii and iv

ii, iii and iv

i, ii and iii

9.

1 point

Starting with Windows XP Service pack 2 and Windows Server 2003 Service Pack 1, Microsoft's OS provides a feature called _____________ to support non-executable stack or heap pabilities.

Data Execution Prevention

Stack Overflow Prevention

Memory Execution Prevention

Buffer Overflow Prevention

10.

1 point

Which of the following is Not a feature of Windows User-Mode Rootkits?

Hiding files, processes, system services, system drivers, Registry keys and TCP/UDP ports.

Lying to users about how much free space is available on the hard drive.

Creating a remotely accessible command-shell backdoor, made invisible on the local system.

Activate the hidden system processes.

11.

1 point

Consider the situation in which an intervening entity such as a firewall blocks direct access to a target system. Resourceful attackers can find their way around these obstacles using.

ftp

denial-of-Service

port redirection

telnet

12.

1 point

A(n) _______ is a manner of manipulating software to result in undesired behaviour.

external probing

buffer overflow

exploit

heap overflow

13.

1 point

Which of the following event file is used to stores events associated with application e.g. database, Web servers or user applications in Windows system?

APPEVENT.EVT

FILE.EVT

SECEVENT.EVT

SYSEVENT.EVT

14.

1 point

Which of the following is Not the correct method to defense against bots, backdoors & spyware?

Knowing Your hardware

Looking for Unusual TCP and UDP ports

Use Antivirus and Antispyware Tools

Knowing Your Software

15.

1 point

Which of the following is NOT a Distributed Denial-of-Service defenses?

Traffic shaping

Limits Bandwidth

Packet filtering Firewalls at DMZ

use egress Anti-Spoofing filters

16.

1 point

Which of the following is FALSE?

TCP SYN Port Scanning completes the three-way handshake

TCP Connect is also know as Full Open Scan

TCP SYN Port Scanning is stealthier than TCP Connect scans

TCP SYN is also know as Half Open Scan

17.

1 point

Which of the following is a correct definition of a Trojan?

It sends messages to a computer with an IP address indicating that the message is coming from a trusted host.

It needs no user intervention to replicate.

It buries itself in the operating system software and infects other systems only after a user executes the application that it is buried in.

It collects personal information or changes your computer configuration without appropriately obtaining prior consent.

18.

1 point

Each of the following protocols can be used by TCP for transmissions over the Internet except _________.

Post Office Protocol (POP)

Internet Transfer Protocol (ITP)

File Transfer Protocol (FTP)

HyperText Transfer Protocol (HTTP)

19.

1 point

The most popular techniques for launching packet floods are:
i. Bonk;
ii. SYN floods
iii. Smurf attacks
iv. Distributed DoS attacks

i, ii and iv

i, ii and iii

ii, iii and iv

i, ii, iii and iv

20.

1 point

IP addresses beginning with 127 decimal are reserved for ___________.

unknown class

for external testing

reserved for loopback

for future use

21.

1 point

Which of the following protocol does Ethereal indicate when pinging a computer?

Transmission Control Protocol(TCP)

Domain Name System (DNS)

Internet Control Message Protocol (ICMP)

Address Resolution Protocol (ARP)

22.

1 point

For Information Gathering Methodology under Publicly Available Information, what is the common information an attacker looks for?
i. Names
ii. Emails
iii. Technologies
iv. Current events / Recent happenings

i, ii and iv

ii, iii and iv

i, ii, iii and iv

i, ii and iii

23.

1 point

What does it mean when running the following command at PC 192.168.1.2? winrelay –lip 192.168.1.2 –lp 4000 –dip 192.168.1.23 –dp 5000 –proto tcp
i. It is a Trojan horse;
ii. PC 192.168.1.2 has been setup to listen to port 4000;
iii. The traffic arrives at port 5000 will be redirected to port 4000;
iv. PC 192.168.1.23 is the destination where the traffic will go to.

ii and iii

i and iii

ii and iv

i and ii

24.

1 point

Windows s events information is constantly being written into,
i. SECURITY.LOG ;
ii. FILE.LOG;
iii. APPLICATION.LOG;
iv. SYSTEM.LOG.

ii, iii and iv

i, ii and iii

i, iii and iv

i, ii, iii and iv

25.

1 point

Sending an e-mail from one address but making it seem as if it is coming from another is called ______________.

falsifing

telneting

exploiting

spoofing

26.

1 point

Which one of the following best describes the type of attack designed to bring a network to a halt by flooding the systems with useless traffic?

Ping of death

DoS

Teardrop

Social engineering

27.

1 point

Which are the other three of the SIX common techniques can be applied to mount an effective defence against the attacks from having the ability to alter logs?
• Activate Logging
• Setting Proper Permissions
• Using a Separate Logging Server

i. Encrypting Log Files
ii. Making Log Files Append Only
iii. Protecting Log Files Using Write-once Media
iv. Renaming Log Files

i, iii and iv

i, ii and iii

ii, iii and iv

i, ii and iv

28.

1 point

What is the meaning of Anonymizing HTTP Proxy?

Allow the attacker to surf the web without revealing the attacker's user account.

Allow the attacker to surf the web as an anonymous user.

Allow the attacker to surf the Web without revealing the attacker's location.

Allow the attacker to surf the web without revealing the attacker's HTTP sequence number

29.

1 point

Which one of the following is not true about a web server?

The browser client must specify the port if not using well-known port 80.

The default port for a web server is port 80.

A commonly used alternate port for web servers is 8080.

A web server must always run on port 80.

30.

1 point

Password cracking involves _________________ .

mounting a keylogger software in a computer to capture typed password.

guessing password using an automated tool.

stealing the encrypted password representations and trying to recover the original clear text password using an automated tool.

password decrypting using an automated tool.