search

Which item below is the standard security checklist against which systems are evaluated for a security posture?

1 anos atrás
Comentários: 0
Visualizações: 131

What type of penetration testing technique is used if the tester has no prior knowledge of the network infrastructure that is being tested?black boxgray boxwhite box

sealed box

Select the vulnerability scan type that will use only the available information to hypothesize the status of the vulnerability.activeintrusivepassive

non-intrusive

Which tester has an in-depth knowledge of the network and systems being tested, including network diagrams, IP addresses, and even the source code of custom applications?white boxreplaysystem

black box

What type of reconnaissance is a penetration tester performing if they are using tools that do not raise any alarms?activeinvasivepassive

evasive

What process addresses how long data must be kept and how it is to be secured?legal and compliancedata methodologylegal retention

data retention

The goal of what type of threat evaluation is to better understand who the attackers are, why they attack, and what types of attacks might occur?threat mitigationthreat profilingthreat modeling

risk modeling

Which data erasing method will permanently destroy a magnetic-based hard disk by reducing or eliminating the magnetic field?wipingdegaussingpurging

data sanitation

What term is defined as the state or condition of being free from public attention to the degree that you determine?privacysecurecontentment

freedom

An administrator needs to view packets and decode and analyze their contents. What type of application should the administrator use?protocol analyzersystem analyzerapplication analyzer

threat profiler

Which is the term for a computer typically located in an area with limited security and loaded with software and data files that appear to be authentic, yet they are imitations of real data files?honeypothoneynethoneycomb

port scanner

Vulnerability scanning should be conducted on existing systems and particularly as new technology equipment is deployed.True

False

Nslookup displays detailed information about how a device is communicating with other network devices.True

False

Which scan examines the current security, using a passive method?threat scanvulnerability scansystem scan

application scan

Realistically, risks can never be entirely eliminated.True

False

Which of the following groups categorize the risks associated with the use of private data? (Choose all that apply.)Private and consumer data.Individual inconveniences and identity theft.Associations with groups.

Statistical inferences.

Individual inconveniences and identity theft.Associations with groups.

Statistical inferences.

What security goal do the following common controls address: hashing, digital signatures, certificates, nonrepudiation tools?confidentialitysafetyintegrity

availability

What is another term used for a security weakness?vulnerabilityriskopportunity

threat

A port in what state below implies that an application or service assigned to that port is listening for any instructions?empty portinterruptible systemclosed port

open port

A risk management assessment is a systematic and methodical evaluation of the security posture of the enterprise.True

False

Which item below is the standard security checklist against which systems are evaluated for a security posture?baselinecontrolprofile

threat

What is the name of the process that basically takes a snapshot of the current security of an organization?threat assessmentthreat analysisrisk assessment

vulnerability appraisal

An administrator running a port scan wants to ensure that no processes are listening on port 23. What state should the port be in?secure portclosed portopen port

hardened port

What security goal do the following common controls address: Redundancy, fault tolerance, and patching?integrityavailabilityconfidentiality

safety

What is the end result of a penetration test?penetration test profilepenetration test viewpenetration test system

penetration test report

Netstat displays all current TCP/IP network configuration values and refreshes Dynamic Host Configuration Protocol (DHCP) and DNS settings.True

False

What type of scanner sends "probes" to network devices and examines the responses received back to evaluate whether a specific device needs remediation?non-intrusivepassiveactive

intrusive

Which of the following is used to replicate attacks during a vulnerability assessment by providing a structure of exploits and monitoring tools?assessment imagereplication imageexploitation framework

penetration framework

TCP/IP uses a numeric value as an identifier to the applications and services on these systems.True

False

Which of the following are the goals of a vulnerability scan? (Choose all that apply.)identify a lack of security controlsidentify vulnerabilitiesidentify common misconfigurations

identify threat actors

identify a lack of security controlsidentify vulnerabilities

identify common misconfigurations

In white box and gray box testing, the first task of the tester is to perform preliminary information gathering on their own from outside the organization, sometimes called open source intelligence (OSINT).True

False

If a penetration tester has gained access to a network and then tries to move around inside the network to other resources, what procedure is the tester performing?persistencesecondary exploitationpivot

spinning

What is the term for a network set up with intentional vulnerabilities?honeycombhoneypothoney hole

honeynet

The second step in a vulnerability assessment is to determine the assets that need to be protected.True

False

If a user uses the operating system's "delete" command to erase data, what type of data removal procedure was used?degaussingdata sanitationwiping

purging

Each packet/datagram contains a source port and destination port.True

False

During a vulnerability assessment, what type of software can be used to search a system for port vulnerabilities?application profilerport scannervulnerability profiler

threat scanner

Determining vulnerabilities often depends on the background and experience of the assessor.True

False

What process does a penetration tester rely on to access an ever-higher level of resources?continuous exploitationpersistencepivot

spinning

Which security procedure is being demonstrated if an administrator is using Wireshark to watch for specific inbound and outbound traffic?virus controlfirewall monitoringapplication control

application search

Which of the following is a valid data sensitivity labeling and handling category? (Choose all that apply.)proprietaryconfidentialpersonal health information

high-risk

Top List List

Postagens relacionadas

Udemy, inc. microsoft power bi - curso de power bi desktop
Udemy, inc. microsoft power bi - curso de power bi desktop

O tixotropismo ocorrido no citoplasma, pode ser influenciado por fatores como ph e temperatura.
O tixotropismo ocorrido no citoplasma, pode ser influenciado por fatores como ph e temperatura.

Which of the following is a correct list of structures found in both plant and animal cells?
Which of the following is a correct list of structures found in both plant and animal cells?

A ________-topped vacutainer is used for cultures on blood or body fluid.
A ________-topped vacutainer is used for cultures on blood or body fluid.

Fast moving currents of air found near the top of the troposphere are called
Fast moving currents of air found near the top of the troposphere are called

Top toys for 4 year olds
Top toys for 4 year olds

Lista de imigrantes italianos em santa catarina
Lista de imigrantes italianos em santa catarina

Difference between shares and bonds investopedia
Difference between shares and bonds investopedia

How to switch from turbotax desktop to online
How to switch from turbotax desktop to online

List behaviors that you think indicate positive social development. how can caregivers and parents encourage these behaviors in the first three years?
List behaviors that you think indicate positive social development. how can caregivers and parents encourage these behaviors in the first three years?

Quais são as vantagens da energia nuclear?
Quais são as vantagens da energia nuclear?

Qual é a cor da primeira corda do violão?
Qual é a cor da primeira corda do violão?

Quais fatores levaram os europeus a buscar novas rotas ao Oriente?
Quais fatores levaram os europeus a buscar novas rotas ao Oriente?

Qual é a camada da atmosfera onde há maior concentração de ozônio?
Qual é a camada da atmosfera onde há maior concentração de ozônio?

Quais objetivos a serem alcançados com o desenvolvimento do seu estágio?
Quais objetivos a serem alcançados com o desenvolvimento do seu estágio?

Equação exponencial com bases diferentes exercícios resolvidos PDF
Equação exponencial com bases diferentes exercícios resolvidos PDF

Quando lança o próximo capítulo de Poppy Playtime?
Quando lança o próximo capítulo de Poppy Playtime?

O balanço patrimonial é uma das demonstrações financeiras mais importantes
O balanço patrimonial é uma das demonstrações financeiras mais importantes

Rei Arthur: A Lenda da Espada filme completo Dublado Download utorrent
Rei Arthur: A Lenda da Espada filme completo Dublado Download utorrent

Você tem o direito de ficar calado. tudo o que disser pode e será usado contra você no tribunal
Você tem o direito de ficar calado. tudo o que disser pode e será usado contra você no tribunal

Publicidade

ÚLTIMAS NOTÍCIAS

Which of the following are actually intended to be used by someone other than the owner?
1 anos atrás . por UnwashedAdvice
During project execution, the project sponsors responsibilities include all of these except:
1 anos atrás . por BefuddledMomentum
Which is not responsible for low ph in water bodies?
1 anos atrás . por NearExclamation
An electric toaster has a power rating of 1100 W at 110 v what is the resistance of the heating coil
1 anos atrás . por OnstageShoplifting
Comparação arroz branco e integral
1 anos atrás . por DiseasedConfidant
The rms speed depends only on temperature
1 anos atrás . por HilariousMouthful
Why do many governments in middle and south america favor export-oriented agriculture?
1 anos atrás . por FascinatingPragmatism
Which account is credited to recognize the income tax consequences of operating at a loss?
1 anos atrás . por NonpartisanTaker
List one example of presidential intervention
1 anos atrás . por ModernDwelling
All of the following types of stretches if done properly are considered good for the body except:
1 anos atrás . por PremierGunman

Toplistas

#1
Top 7 registro de 1 4 de volta 2022
2 anos atrás
#2
Top 5 explique no caderno qual das palavras entre parênteses funciona como adjetivo e deve ser flexionada 2022
1 anos atrás
#3
Top 7 sinais de autismo em bebe de 6 meses 2022
2 anos atrás
#4
Top 7 frutas que fazem bem pra pele 2022
2 anos atrás
#5
Top 8 qual a função da unicef 2022
2 anos atrás
#6
Top 9 resultado do bicho de rio de janeiro 2022
2 anos atrás
#7
Top 8 imagem de fenix para tatuagem 2022
2 anos atrás
#8
Top 8 jogo do bicho das 14hs de hoje mg 2022
2 anos atrás
#9
Top 7 as dezenas dos bichos 2022
2 anos atrás
#10
Top 5 identifique no texto outro conectivo com o mesmo valor semântico de entretanto 2022
1 anos atrás

Publicidade

Populer

Token Data

Publicidade

Sobre

Jurídica

Ajuda

Social

homeenitjazhid
direito autoral © 2024 pauex Inc.