TEST BORRADO, QUIZÁS LE INTERESE: Test Resumen Inicio CEH
COMENTARIOS | ESTADÍSTICAS | RÉCORDS |
---|
REALIZAR TEST
Título del Test:
Test Resumen Inicio CEH Descripción: Primer test que aparece como introducción en la CEH Autor: David OTROS TESTS DEL AUTOR Fecha de Creación: 10/09/2024 Categoría: Informática Número Preguntas: 30 |
COMPARTE EL TEST
COMENTAR
No hay ningún comentario sobre este test.
Temario:
Which header field is used to reassemble fragmented IP packets? Destination Address IP Identification Don't fragment bit ToS field. If you were to see the following in a packet capture, what would you expect was happening? ' or 1=1; Cross-site scripting Command injection SQL injection XML external entity injection. What method might you use to successfully get malware onto a mobile device? Through the Apple Store or Google Play Store External storage on an Android Third‐party app store Jailbreaking. What protocol is used to take a destination IP address and get a packet to a destination on the local network? DHCP ARP DNS RARP. What would be the result of sending the string AAAAAAAAAAAAAAAAA into a variable that has been allocated space for 8 bytes? Heap spraying SQL injection Buffer overflow Slowloris attack. If you were to see the subnet mask 255.255.248.0, what CIDR notation (prefix) would you use to indicate the same thing? /23 /22 /21 /20. What is the primary difference between a worm and a virus? A worm uses polymorphic code. A virus uses polymorphic code. A worm can self‐propagate. A virus can self‐propagate. How would you calculate risk? Probability * loss Probability * mitigation factor (Loss + mitigation factor) * (loss/probability) Loss * mitigation factor. How does an evil twin attack work? Phishing users for credentials Spoofing an SSID Changing an SSID Injecting four‐way handshakes. To remove malware in the network before it gets to the endpoint, you would use which of the following? Antivirus Application layer gateway Unified threat management appliance Stateful firewall. What is the purpose of a security policy? Providing high‐level guidance on the role of security Providing specific direction to security workers Increasing the bottom line of a company Aligning standards and practices. What has been done to the following string? %3Cscript%3Ealert('wubble');%3C/script%3E Base64 encoding URL encoding Encryption Cryptographic hashing. What would you get from running the command dig ns domain.com? Mail exchanger records for domain.com Name server records for domain.com Caching name server for domain.com IP address for the hostname ns. What technique would you ideally use to get all of the hostnames associated with a domain? DNS query Zone copy Zone transfer Recursive request. If you were to notice operating system commands inside a DNS request while looking at a packet capture, what might you be looking at? Tunneling attack DNS amplification DNS recursion XML entity injection. What would be the purpose of running a ping sweep? You want to identify responsive hosts without a port scan You want to use something that is light on network traffic You want to use a protocol that may be allowed through the firewall All of the above. How many functions are specified by NIST's cybersecurity framework? 0 3 5 4. What would be one reason not to write malware in Python? The Python interpreter is slow. The Python interpreter may not be available. There is inadequate library support. Python is a hard language to learn. If you saw the following command line, what would you be capturing? tcpdump -i eth2 host 192.168.10.5 Traffic just from 192.168.10.5 Traffic to and from 192.168.10.5 Traffic just to 192.168.10.5 All traffic other than from 192.168.10.5. What is Diffie‐Hellman used for? Key management Key isolation Key exchange Key revocation. Which social engineering principle may allow a phony call from the help desk to be effective? Social proof Imitation Scarcity Authority. How do you authenticate with SNMPv1? Username/password Hash Public string Community string. What is the process Java programs identify themselves to if they are sharing procedures over the network? RMI registry RMI mapper RMI database RMI process. What do we call an ARP response without a corresponding ARP request? Is‐at response Who‐has ARP Gratuitous ARP IP response. What are the three times that are typically stored as part of file metadata? Moves, adds, changes Modified, accessed, deleted Moved, accessed, changed Modified, accessed, created. Which of these is a reason to use an exploit against a local vulnerability? Pivoting Log manipulation Privilege escalation Password collection. What principle is used to demonstrate that a signed message came from the owner of the key that signed it? Nonrepudiation Nonverifiability Integrity Authority. What is a viable approach to protecting against tailgating? Biometrics Badge access Phone verification Man traps. Why is bluesnarfing potentially more dangerous than bluejacking? Bluejacking sends, while bluesnarfing receives. Bluejacking receives, while bluesnarfing sends. Bluejacking installs keyloggers. Bluesnarfing installs keyloggers. Which of the security triad properties does the Biba security model relate to? Confidentiality Integrity Availability All of them. |
Denunciar Test