NVST quiz 4 (91- 120)

1.

1 point

Which of the following represent the pool of well-known ports?

0 through 49151

0 through 1023

1024 through 49151

0 through 255

2.

1 point

Which of the following statement is FALSE about ICMP (Internet Control Message Protocol)?

ICMP “mapping” is often conducted via a ping sweep

ICMP manipulates the time-to-live (TTL) option in UDP packets

ICMP message types reply from the target provide a great deal of information to hackers about host connectivity and the hop count to a particular system

ICMP was essentially designed for the troubleshooting of routing and connectivity issues in IP networks

3.

1 point

The File Transfer Protocol (FTP) can be accessed by each of the following except ________.

LPTP server

command line

FTP client

Web browser

4.

1 point

TCP/IP family of protocols includes several components:
i. Transmission Control Protocol (TCP);
ii. User Datagram Protocol (UDP);
iii. Internet Protocol (IP);
iv. Internet Control Message Protocol (ICMP)

i and ii

i, ii and iii

i, ii, iii and iv

ii and iii

5.

1 point

Which layer of the OSI model is responsible for code and character-set conversion as well as recognizing data formats?

Application

Session

Presentation

Network

6.

1 point

Which of the following are TRUE about a Script Kiddie?
i. With low-level hacking skills
ii. Use released tools and software to exploit without understanding the underlying vulnerability
iii. Biggest group of attackers and usually rather immature
iv. Use Social Engineering technique

i, ii and iii

ii, iii and iv

i, ii and iv

i, ii, iii and iv

7.

1 point

Which of the following measures can be used to defend against Network Mapping?
i. Filter out the underlying message that network mapping tools rely on by using firewalls and the packet filtering router;
ii. Block incoming ICMP message;
iii. Filter ICMP_TIME_EXCEEDED messages leaving your network to stymie an attacker using traceroute;
iv. To prevent an attacker from discovering open ports on your
machine is to close all unused ports

i, ii and iii

i and ii

ii and iii

i, ii, iii and iv.

8.

1 point

________ is the protocol Microsoft uses to share files, printers, and serial ports, and also to communicate between computers using named pipes.

Server Message Block (SMB)

Communication Message Block (CMB)

Traffic Message Block (TMB)

Resource Control Block (RCB)

9.

1 point

To prevent an attacker from discovering open ports on your machine is to _______.

assign strong passwords to all ports

close all unused ports

terminate services on open ports

hide all ports

10.

1 point

Passwords can be intercepted as they move through networks via which of the following?

Keyboard sniffers

Cookies

Password sniffers

Trojan horses

11.

1 point

You are the security administrator for a bank. The users are complaining about the network being slow. However, it is not a particularly busy time of the day. You capture network packets and discover that hundreds of ICMP packets have been sent to the host. What type of attack is likely being executed against your network?

Denial of service

Spoofing

Man-in-the-middle

DNS kiting

12.

1 point

Which of the following is the best option for a network administrator to prevent attacker to figure out users' IDs or password?

Disable cookies

Hidden form elements

Session Hijacking

URL Session Tracking

13.

1 point

Which of the following is NOT the correct countermeasure against SYN flooding?

use SYN cookies

Do not dole out user privileges carelessly

increase the size of connection queue

have redundant communication links to sensitive systems that must be all the time connected to the Internet.

14.

1 point

Which of the following is Not the functionality of BOTs software?

Special UDP port scanning

File morphing

DoS flood

E-mail address harvester

15.

1 point

Identify one method to defend against DDoS attack from locally stopping services?

Keep your system regularly patched and apply relevant security bug fixes.

Implement per user limits on the consumption of file system space, memory and CPU usage.

Apply the principle of providing least privilege rights to user.

Deploy some system monitoring software that can detect when system resources are running low.

16.

1 point

Which type of Buffer Overflow Exploits allows attacker to access the system as an impersonated root user?

Stack-based Buffer Overflow

Program Buffer Overflow

Memory buffer Overflow

Heap Overflow

17.

1 point

Nmap is able to provide the following types of scanning except ______.

TCP SYN

TCP Connect

UDP Connect

Password Scanning

18.

1 point

Running the following command at the PC with IP address 192.168.1.2. What does it mean? fpipe –l 1000 –r 5000 192.168.1.23
i. It is port redirection;
ii. Setup the PC (192.168.1.2) to listen to port 5000;
iii. PC 192.168.1.2 will pick up traffic entering at port 1000;
iv. The traffic arrives at port 1000 will be redirected to PC 192.168.1.23 at port 5000.

i, ii, iii and iv

i, ii and iii

ii, iii and iv

i, iii and iv

19.

1 point

The Transmission Control Protocol/Internet Protocol (TCP/IP) protocal that handles outgoing mail using port 25 is ______.

Post Office Protocol (POP)

Simple Mail Transfer Protocol (SMTP)

Internet Mail Access Protocol (IMAP)

Secure/Multipurpose Internet Mail Extensions (S/MIME)

20.

1 point

Which of the following techniques are considered as Malformed Packet DoS Attacks?
i. Land
ii. Ping of Death
iii. Rose
iv. Bonk

i, ii and iii

ii, iii and iv

i, ii and iv

i, ii, iii and iv

21.

1 point

Illegal or unauthorized zone transfers are a significant and direct threat to what type of network server?

DNS

Database

Web

DHCP

22.

1 point

Which of the following advantages are associated with using a firewall?

It is used to block undersired external access to internal network resources.

It is used to monitor the use of Internet by internal users.

It is used to hide the internal addressing scheme of the network.

It provides an inexpensive meansto share the Internet connection.

23.

1 point

What is the best measure to keep zombies off the system?

employ egress anti-spoof filters on external routers or firewall.

install DDoS detection and throttling tools on your network

deploy filters upstream to block flood traffic.

limits Bandwidth

24.

1 point

Which of the following is a probable cause of a hacker creating a back door in a system?

The hacker is trying to get personal information form the user over the phone

The hacker is trying to guess the credentials of the user

The hacker is trying to get access without having to authenticate

The hacker is trying to connect to the user's wireless home network

25.

1 point

When a threat uses vulnerability to attack a resource, some severe consequences can result in
i. Loss of Confidentiality
ii. Loss of Integrity
iii. Loss of Availability

i and ii

ii and iii

i, ii and iii

None of the above

26.

1 point

You suspect one of your servers may have succumbed to a SYN flood attack. Which one of the following tools might you consider using to help confirm your suspicions?

Ping

Netstat

Tracert

Ipconfig

27.

1 point

You can start to build defenses for your information system by creating security ____________.

pillars

foundations

planes

baselines

28.

1 point

Under Phase of Attacks, DoS (Denial-of-Service) Attack is considered as which phase?

Gaining Access

Reconnaissance

Scanning

Maintain Access

29.

1 point

Which of the followingis the process of identifying and reducing risk to a level that is comfortable and then implementing controls to maintain that level?

Risk management

Return on investment

Risk analysis

Risk

30.

1 point

Which of the following Hacker Class is also known as “Cracker”?

Red Hats

Black Hats

Grey Hats

White Hats