Comptia Security+ Practice Tests : exam sy0-601, 2nd Edition (2021)

Preview (31 of 339 Pages)

100%

Purchase to unlock

Loading page image...

T=StudyX

Loading page image...

DownloadedfromStudyXY.com&+StudyXYnas,as.aTBStudyLAnythingThisContentHasbeenPostedOnStudyXY.comassupplementarylearningmaterial.StudyXYdoesnotendroseanyuniversity,collegeorpublisher.Allmaterialspostedareundertheliabilityofthecontributors.wv6)www.studyxy.com

Loading page image...

T=StudyX

Loading page image...

(uptoa$35value)*Somerestrictionsapply.Seewebpagefordetails.Getdetailsatwww.wiley.com/go/sybextestprepTogetthediscountcode,you'llneedtoregisterandlogonthetestbank.ThengotoResources.>3_1SYBEX

Loading page image...

T=StudyX

Loading page image...

Security+®PracticeTestsSecondEdition

Loading page image...

T=StudyX

Loading page image...

Security+®PracticeTestsSecondEditionDavidSeidl

Loading page image...

Copyright©2021byJohnWiley&Sons,Inc.,Indianapolis,IndianaPublishedsimultaneouslyinCanadaISBN:978-1-119-73546-5ISBN:978-1-119-73545-8(ebk.)ISBN:978-1-119-73544-1(ebk.)Nopartofthispublicationmaybereproduced,storedinaretrievalsystemortransmittedinanyformorbyanymeans,electronic,mechanical,photocopying,recording,scanningorotherwise,exceptaspermittedunderSections107or108ofthe1976UnitedStatesCopyrightAct,withouteitherthepriorwrittenpermissionofthePublisher,orauthorizationthroughpaymentoftheappropriateper-copyfeetotheCopyrightClearanceCenter,222RosewoodDrive,Danvers,MA01923,(978)750-8400,fax(978)646-8600.RequeststothePublisherforpermissionshouldbeaddressedtothePermissionsDepartment,JohnWiley&Sons,Inc.,111RiverStreet,Hoboken,NJ07030,(201)748-6011,fax(201)748-6008,oronlineatwww.wiley.com/go/permissions.LimitofLiability/DisclaimerofWarranty:Thepublisherandtheauthormakenorepresentationsorwarrantieswithrespecttotheaccuracyorcompletenessofthecontentsofthisworkandspecificallydisclaimallwarranties,includingwithoutlimitationwarrantiesoffitnessforaparticularpurpose.Nowarrantymaybecreatedorextendedbysalesorpromotionalmaterials.Theadviceandstrategiescontainedhereinmaynotbesuitableforeverysituation.Thisworkissoldwiththeunderstandingthatthepublisherisnotengagedinrenderinglegal,accounting,orotherprofessionalservices.Ifprofessionalassistanceisrequired,theservicesofacompetentprofessionalpersonshouldbesought.Neitherthepublishernortheauthorshallbeliablefordamagesarisingherefrom.ThefactthatanorganizationorWebsiteisreferredtointhisworkasacitationand/orapotentialsourceoffurtherinformationdoesnotmeanthattheauthororthepublisherendorsestheinformationtheorganizationorWebsitemayprovideorrecommendationsitmaymake.Further,readersshouldbeawarethatInternetWebsiteslistedinthisworkmayhavechangedordisappearedbetweenwhenthisworkwaswrittenandwhenitisread.Forgeneralinformationonourotherproductsandservicesortoobtaintechnicalsupport,pleasecontactourCustomerCareDepartmentwithintheU.S.at(877)762-2974,outsidetheU.S.at(317)572-3993orfax(317)572-4002.Wileypublishesinavarietyofprintandelectronicformatsandbyprint-on-demand.Somematerialincludedwithstandardprintversionsofthisbookmaynotbeincludedine-booksorinprint-on-demand.IfthisbookreferstomediasuchasaCDorDVDthatisnotincludedintheversionyoupurchased,youmaydownloadthismaterialatbooksupport.wiley.com.FormoreinformationaboutWileyproducts,visitwww.wiley.com.LibraryofCongressControlNumber:2020950198TRADEMARKS:Wiley,theWileylogo,andtheSybexlogoaretrademarksorregisteredtrademarksofJohnWiley&Sons,Inc.and/oritsaffiliates,intheUnitedStatesandothercountries,andmaynotbeusedwithoutwrittenpermission.CompTIAandSecurity+areregisteredtrademarksofCompTIAProperties,LLC.Allothertrademarksarethepropertyoftheirrespectiveowners.JohnWiley&Sons,Inc.isnotassociatedwithanyproductorvendormentionedinthisbook.Study

Loading page image...

ThisbookisdedicatedtoMikeChapple,whohelpedmegetmystartinthewritingfield.Aftermostofadecadewritingtogether,thisismyfirstentirelysoloproject.Mike,thankyouforhelpingmegetmystartalmostadecadeago,forencouragingmealongtheway,andforcontinuingtochallengemetodomoreeachtimewetakeonanotherbook.—DavidStudy

Loading page image...

T=StudyX

Loading page image...

AcknowledgmentsBookslikethisinvolveworkfrommanypeoplewhoputcountlesshoursoftimeandeffortintoproducingthemfromconcepttofinalprintedandelectroniccopies.ThehardworkanddedicationoftheteamatWileyalwaysshows.IespeciallywanttoacknowledgeandthanksenioracquisitionseditorKenyonBrown,whocontinuestobeawonderfulpersontoworkwithonbookafterbook.Ialsogreatlyappreciatedtheeditingandproductionteamforthebook,includingTomDinse,theprojecteditor,whobroughtyearsofexperienceandgreattalenttotheproject;ChrisCrayton,thetechnicaleditor,whoprovidedinsightfuladviceandgavewonderfulfeedbackthroughoutthebook;andSaravananDakshinamurthy,theproductioneditor,whoguidedmethroughlayouts,formatting,andfinalcleanuptoproduceagreatbook.Iwouldalsoliketothankthemanybehind-the-scenescontributors,includingthegraphics,produc-tion,andtechnicalteamswhomakethebookandcompanionmaterialsintoafinishedproduct.Myagent,CaroleJelenofWatersideProductions,continuestoprovideuswithwonderfulopportunities,advice,andassistancethroughoutourwritingcareers.Finally,Iwanttothankmyfriendsandfamily,whohavesupportedmethroughthelateevenings,busyweekends,andlonghoursthatabooklikethisrequirestowrite,edit,andgettopress.

Loading page image...

T=StudyX

Loading page image...

AbouttheAuthorDavidSeidlisvicepresidentforinformationtechnologyandCIOatMiamiUniversity,whereheisresponsibleforITforMiamiUniversity.DuringhisITcareer,hehasservedinavarietyoftechnicalandinformationsecurityroles,includingservingastheseniordirectorforCampusTechnologyServicesattheUniversityofNotreDame,whereheco-ledNotreDame’smovetothecloudandoversawcloudoperations,ERP,databases,identitymanagement,andabroadrangeofothertechnologiesandservice.PriortohisseniorleadershiprolesatNotreDame,heservedasNotreDame’sdirectorofinformationsecurityandledNotreDame’sinformationsecurityprogram.HetaughtinformationsecurityandnetworkingundergraduatecoursesasaninstructorforNotreDame’sMendozaCollegeofBusinessandhaswrittenbooksonsecuritycertificationandcyberwarfare,includingcoau-thoringCISSP(ISC)*OfficialPracticeTests(Sybex,2018)aswellasthecurrentandpreviouseditionsoftheCompTIACySA+StudyGuide:ExamCS0-002(Wiley,2020,Chapple/Seidl)andCompTIACySA+PracticeTests:ExamCS0-002(Wiley,2020,Chapple/Seidl).Davidholdsabachelor’sdegreeincommunicationtechnologyandamaster’sdegreeininformationsecurityfromEasternMichiganUniversity,aswellasCISSP,CySA+,Pentest+,GPEN,andGCIHcertifications.

Loading page image...

T=StudyX

Loading page image...

AbouttheTechnicalEditorChrisCrayton,MSCE,CISSP,CySA+,A+,N+,S+,isatechnicalconsultant,trainer,author,andindustry-leadingtechnicaleditor.Hehasworkedasacomputertechnologyandnet-workinginstructor,informationsecuritydirector,networkadministrator,networkengineer,andPCspecialist.Chrishasservedastechnicaleditorandcontentcontributoronnumeroustechnicaltitlesforseveraloftheleadingpublishingcompanies.Hehasalsobeenrecognizedwithmanyprofessionalandteachingawards.Study

Loading page image...

T=StudyX

Loading page image...

ContentsataGlanceIntroductionxixChapter1Threats,Attacks,andVulnerabilities1Chapter2ArchitectureandDesign45Chapter3Implementation81Chapter4OperationsandIncidentResponse129Chapter5Governance,Risk,andCompliance159AppendixAnswersandExplanations185Index2991StudyX

Loading page image...

T=StudyX

Loading page image...

ContentsIntroductionxixChapter1Threats,Attacks,andVulnerabilities1Chapter2ArchitectureandDesign45Chapter3Implementation81Chapter4OperationsandIncidentResponse129Chapter5Governance,Risk,andCompliance159AppendixAnswersandExplanations185Index2991StudyX

Loading page image...

T=StudyX

Loading page image...

IntroductionCompTIASecurity+PracticeTests:ExamSY0-601,SecondEditionistheperfectcompanionvolumetotheCompTIASecurity+StudyGuide:ExamSY0-601,EighthEdition(Wiley,2020,Chapple/Seidl).Ifyou'relookingtotestyourknowledgebeforeyoutaketheSecurity+exam,thisbookwillhelpyoubyprovidingacombinationof1,100questionsthatcovertheSecurity+domainsandeasy-to-understandexplanationsofbothrightandwronganswers.Ifyou'rejuststartingtopreparefortheSecurity+exam,wehighlyrecommendthatyouusetheCompTIASecurity+StudyGuide,EighthEditiontohelpyoulearnabouteachofthedomainscoveredbytheSecurity+exam.Onceyou'rereadytotestyourknowledge,usethisbooktohelpfindplaceswhereyoumayneedtostudymoreortopracticefortheexamitself.SincethisisacompaniontotheSecurity+StudyGuide,thisbookisdesignedtobesim-ilartotakingtheSecurity+exam.Thebookitselfisbrokenupintosevenchapters:fivedomain-centricchapterswithquestionsabouteachdomain,andtwochaptersthatcontain100-questionpracticeteststosimulatetakingtheSecurity+examitself.Ifyoucananswer90percentormoreofthequestionsforadomaincorrectly,youcanfeelsafemovingontothenextchapter.Ifyoureunabletoanswerthatmanycorrectly,rereadthechapterandtrythequestionsagain.Yourscoreshouldimprove.oeDon'tjuststudythequestionsandanswers!Thequestionsontheactualexam<<willbedifferentfromthepracticequestionsincludedinthisbook.Theexamisdesignedtotestyourknowledgeofaconceptorobjective,sousethisbooktolearntheobjectivesbehindthequestions.TheSecurity+ExamTheSecurity+examisdesignedtobeavendor-neutralcertificationforcybersecuritypro-fessionalsandthoseseekingtoenterthefield.CompTIArecommendsthiscertificationforthosecurrentlyworking,oraspiringtowork,inroles,including:=Systemsadministrator=Securityadministrator=Securityspecialist=Securityengineer=Networkadministrator=JuniorITauditor/penetrationtester=SecurityconsultantStudy

Loading page image...

xxIntroductionTheexamcoversfivemajordomains:1.Threats,Attacks,andVulnerabilities2.ArchitectureandDesign3.Implementation4.OperationsandIncidentResponse5.Governance,Risk,andComplianceThesefiveareasincludearangeoftopics,fromfirewalldesigntoincidentresponseandforensics,whilefocusingheavilyonscenario-basedlearning.That'swhyCompTIArecom-mendsthatthoseattemptingtheexamhaveatleasttwoyearsofhands-onworkexperience,althoughmanyindividualspasstheexambeforemovingintotheirfirstcybersecurityrole.TheSecurity+examisconductedinaformatthatCompTIAcalls“performance-basedassessment.”Thismeansthattheexamcombinesstandardmultiple-choicequestionswithother,interactivequestionformats.Yourexammayincludemultipletypesofquestions,suchasmultiple-choice,fill-in-the-blank,multiple-response,drag-and-drop,andimage-basedproblems.CompTIArecommendsthattesttakershavetwoyearsofinformationsecurity-relatedexperiencebeforetakingthisexam.Theexamcosts$349intheUnitedStates,withroughlyequivalentpricesinotherlocationsaroundtheglobe.MoredetailsabouttheSecurity+examandhowtotakeitcanbefoundhere:www.comptia.org/certifications/securityThisbookincludesadiscountcodefortheSecurity+exam—makesureyouTEuseit!You'llhave90minutestotaketheexamandwillbeaskedtoanswerupto90questionsduringthattimeperiod.Yourexamwillbescoredonascalerangingfrom100to900,withapassingscoreof750.YoushouldalsoknowthatCompTIAisnotoriousforincludingvaguequestionsonallofitsexams.Youmightseeaquestionforwhichtwoofthepossiblefouranswersarecorrect—butyoucanchooseonlyone.Useyourknowledge,logic,andintuitiontochoosethebestanswerandthenmoveon.Sometimes,thequestionsarewordedinwaysthatwouldmakeEnglishmajorscringe—atypohere,anincorrectverbthere.Don’tletthisfrustrateyou;answerthequestionandmoveontothenextone.CompTIAfrequentlydoeswhatiscalleditemseeding,whichisthepracticeTEofincludingunscoredquestionsonexams.Itdoessotogatherpsychometricdata,whichisthenusedwhendevelopingnewversionsoftheexam.Beforeyoutaketheexam,youwillbetoldthatyourexammayincludetheseunscoredquestions.So,ifyoucomeacrossaquestionthatdoesnotappeartomaptoanyoftheexamobjectives—orforthatmatter,doesnotappeartobelongintheexam—itislikelyaseededquestion.Youneverknowwhetherornotaquestionisseeded,however,soalwaysmakeyourbestefforttoanswereveryquestion.Study

Loading page image...

IntroductionxxiTakingtheExamOnceyouarefullypreparedtotaketheexam,youcanvisittheCompTIAwebsitetopur-chaseyourexamvoucher:www.comptiastore.com/Articles.asp?ID=265&category=vouchersCompTIApartnerswithPearsonVUE’stestingcenters,soyournextstepwillbetolocateatestingcenternearyou.IntheUnitedStates,youcandothisbasedonyouraddressoryourZIPcode,whereasnon-U.S.testtakersmayfinditeasiertoentertheircityandcountry.YoucansearchforatestcenternearyouatthePearsonVuewebsite,whereyouwillneedtonav-igateto“Findatestcenter.”www.pearsonvue.com/comptiaNowthatyouknowwhereyou'dliketotaketheexam,simplysetupaPearsonVUEtest-ingaccountandscheduleanexam:home.pearsonvue.com/comptia/onvueOnthedayofthetest,taketwoformsofidentification,andmakesuretoshowupwithplentyoftimebeforetheexamstarts.Rememberthatyouwillnotbeabletotakeyournotes,electronicdevices(includingsmartphonesandwatches),orothermaterialsinwithyou,andthatotherrequirementsmayexistforthetest.Makesureyoureviewthoserequire-mentsbeforethedayofyourtestsoyou'refullypreparedforboththetestitselfaswellasthetestingprocessandfacilityrules.AftertheSecurity+ExamOnceyouhavetakentheexam,youwillbenotifiedofyourscoreimmediately,soyou'llknowifyoupassedthetestrightaway.Youshouldkeeptrackofyourscorereportwithyourexamregistrationrecordsandtheemailaddressyouusedtoregisterfortheexam.MaintainingYourCertificationCompTIAcertificationsmustberenewedonaperiodicbasis.Torenewyourcertification,youcanpassthemostcurrentversionoftheexam,earnaqualifyinghigher-levelComp-TIAorindustrycertification,orcompletesufficientcontinuingeducationactivitiestoearnenoughcontinuingeducationunits(CEUs)torenewit.CompTIAprovidesinformationonrenewalsviatheirwebsiteat:www.comptia.org/continuing-educationWhenyousignuptorenewyourcertification,youwillbeaskedtoagreetotheCEpro-gram’sCodeofEthics,topayarenewalfee,andtosubmitthematerialsrequiredforyourchosenrenewalmethod.AfulllistoftheindustrycertificationsyoucanusetoacquireCEUstowardrenewingtheSecurity+canbefoundat:www.comptia.org/continuing-education/choose/renew-with-a-single-activity/earn-a-higher-level-comptia-certificationStudy

Loading page image...

xxiiIntroductionUsingThisBooktoPracticeThisbookiscomposedofsevenchapterswithover1,000practicetestquestions.Eachofthefirstfivechapterscoversadomain,withavarietyofquestionsthatcanhelpyoutestyourknowledgeofreal-world,scenario,andbestpractices-basedsecurityknowledge.Thefinaltwochaptersarecompletepracticeexamsthatcanserveastimedpracticeteststohelpdeter-minewhetheryou'rereadyfortheSecurity+exam.‘Werecommendtakingthefirstpracticeexamtohelpidentifywhereyoumayneedtospendmorestudytimeandthenusingthedomain-specificchapterstotestyourdomainknowledgewhereitisweak.Onceyou'reready,takethesecondpracticeexamtomakesureyou'vecoveredallthematerialandarereadytoattempttheSecurity+exam.Asyouworkthroughquestionsinthisbook,youwillencountertoolsandtechnologythatyoumaynotbefamiliarwith.Ifyoufindthatyouarefacingaconsistentgaporthatadomainisparticularlychallenging,werecommendspendingsometimewithbooksandmaterialsthattacklethatdomainindepth.Thisapproachcanhelpyoufillingapsandhelpyoubemorepreparedfortheexam.omToaccessourinteractivetestbankandonlinelearningenvironment,simplyvisit5www.wiLey.com/go/sybextestprep,registertoreceiveyouruniquePIN,andinstantlygainoneyearofFREEaccessafteractivationtotheinteractivetestbankwith2practiceexamsandhundredsofdomain-by-domainquestions.Over1,000questionstotal!ExamSY0-601ExamObjectivesCompTIAgoestogreatlengthstoensurethatitscertificationprogramsaccuratelyreflecttheITindustry’sbestpractices.Theydothisbyestablishingcommitteesforeachofitsexamprograms.EachcommitteeconsistsofasmallgroupofITprofessionals,trainingproviders,andpublisherswhoareresponsibleforestablishingtheexam’sbaselinecompetencylevelandwhodeterminetheappropriatetarget-audiencelevel.Oncethesefactorsaredetermined,CompTIAsharesthisinformationwithagroupofhand-selectedsubjectmatterexperts(SMEs).Thesefolksarethetruebrainpowerbehindthecertificationprogram.TheSMEsreviewthecommittee’sfindings,refinethem,andshapethemintotheobjectivesthatfollowthissection.CompTIAcallsthisprocessajob-taskanal-ysis(JTA).Finally,CompTIAconductsasurveytoensurethattheobjectivesandweightingstrulyreflectjobrequirements.OnlythencantheSMEsgotoworkwritingthehundredsofques-tionsneededfortheexam.Evenso,theyhavetogobacktothedrawingboardforfurtherrefinementsinmanycasesbeforetheexamisreadytogoliveinitsfinalstate.Restassuredthatthecontentyou'reabouttolearnwillserveyoulongafteryoutaketheexam.

Loading page image...

IntroductioniiCompTIAalsopublishesrelativeweightingsforeachoftheexam’sobjectives.ThefollowingtableliststhefiveSecurity+objectivedomainsandtheextenttowhichtheyarerepresentedontheexam.Domain%ofExam1.0Threats,Attacks,andVulnerabilities24%2.0ArchitectureandDesign21%3.0Implementation25%4.0OperationsandIncidentResponse16%5.0Governance,Risk,andCompliance14%SY0-601CertificationExamObjectiveMapObjectiveChapter1.0Threats,AttacksandVulnerabilities1.1CompareandcontrastdifferenttypesofsocialengineeringtechniquesChapter11.2Givenascenario,analyzepotentialindicatorstodeterminetheChapter1typeofattack1.3Givenascenario,analyzepotentialindicatorsassociatedwithapplica-Chapter1tionattacks1.4Givenascenario,analyzepotentialindicatorsassociatedwithnet-Chapter1workattacks1.5Explaindifferentthreatactors,vectors,andintelligencesourcesChapter11.6Explainthesecurityconcernsassociatedwithvarioustypesofvul-Chapter1nerabilities1.7SummarizethetechniquesusedinsecurityassessmentsChapter11.8ExplainthetechniquesusedinpenetrationtestingChapter12.0ArchitectureandDesign2.1Explaintheimportanceofsecurityconceptsinanenterpriseenvironment~~Chapter22.2SummarizevirtualizationandcloudcomputingconceptsChapter22.3Summarizesecureapplicationdevelopment,deployment,andautoma-Chapter2tionconcepts2.4SummarizeauthenticationandauthorizationdesignconceptsChapter22.5Givenascenario,implementcybersecurityresilienceChapter22.6ExplainthesecurityimplicationsofembeddedandspecializedsystemsChapter2

Loading page image...

xxivIntroductionObjectiveChapter2.7ExplaintheimportanceofphysicalsecuritycontrolsChapter22.8SummarizethebasicsofcryptographicconceptsChapter23.0Implementation3.1Givenascenario,implementsecureprotocolsChapter33.2Givenascenario,implementhostorapplicationsecuritysolutionsChapter33.3Givenascenario,implementsecurenetworkdesignsChapter33.4Givenascenario,installandconfigurewirelesssecuritysettingsChapter33.5Givenascenario,implementsecuremobilesolutionsChapter33.6Givenascenario,applycybersecuritysolutionstothecloudChapter33.7Givenascenario,implementidentityandaccountmanagementcontrols~~Chapter33.8Givenascenario,implementauthenticationandauthorizationsolutions~~Chapter33.9Givenascenario,implementpublickeyinfrastructureChapter34.0OperationsandIncidentResponse4.1GivenascenariousetheappropriatetooltoassessorganizationalsecurityChapter44.2Summarizetheimportanceofpolicies,processes,andproceduresforChapter4incidentresponse4.3Givenanincident,utilizeappropriatedatasourcestosupportanChapter4investigation4.4Givenanincident,applymitigationtechniquesorcontrolstosecureanChapter4environment4.5ExplainthekeyaspectsofdigitalforensicsChapter45.0Governance,Risk,andCompliance5.1CompareandcontrastvarioustypesofcontrolsChapter55.2Explaintheimportanceofapplicableregulations,standards,orframe-Chapter5worksthatimpactorganizationalsecurityposture5.3ExplaintheimportanceofpoliciestoorganizationalsecurityChapter55.4SummarizeriskmanagementprocessesandconceptsChapter55.5ExplainprivacyandsensitivedataconceptsinrelationtosecurityChapter5jorExamobjectivesaresubjecttochangeatanytimewithoutpriornoticeandatTECompTIAdiscretion.PleasevisitCompTIA'swebsite(www.comptia.org)forthemostcurrentlistingofexamobjectives.

Loading page image...

ChapterThreats,Attacks,1andVulnerabilitiesTHECOMPTIASECURITY+EXAMSY0-601TOPICSCOVEREDINTHISCHAPTERINCLUDETHEFOLLOWING:v1.1Compareandcontrastdifferenttypesofsocialengi-neeringtechniquesv1.2Givenascenario,analyzepotentialindicatorstodeterminethetypeofattackv1.3Givenascenario,analyzepotentialindicatorsassoci-atedwithapplicationattacksv1.4Givenascenario,analyzepotentialindicatorsassoci-atedwithnetworkattacksv1.5Explaindifferentthreatactors,vectors,andintelli-gencesourcesv1.6Explainthesecurityconcernsassociatedwithvarioustypesofvulnerabilitiesv1.7Summarizethetechniquesusedinsecurityassessmentsv1.8Explainthetechniquesusedinpenetrationtesting+StudyXy

Loading page image...

2Chapter1=Threats,Attacks,andVulnerabilities1.Ahmedisasalesmanagerwithamajorinsurancecompany.Hehasreceivedanemailthatisencouraginghimtoclickonalinkandfilloutasurvey.Heissuspiciousoftheemail,butitdoesmentionamajorinsuranceassociation,andthatmakeshimthinkitmightbelegitimate.Whichofthefollowingbestdescribesthisattack?A.PhishingB.SocialengineeringC.SpearphishingD.Trojanhorse2.Youareasecurityadministratorforamedium-sizedbank.Youhavediscoveredapieceofsoftwareonyourbank’sdatabaseserverthatisnotsupposedtobethere.Itappearsthatthesoftwarewillbegindeletingdatabasefilesifaspecificemployeeisterminated.Whatbestdescribesthis?A.WormB.LogicbombC.TrojanhorseD.Rootkit3.YouareresponsibleforincidentresponseatAcmeBank.TheAcmeBankwebsitehasbeenattacked.Theattackerusedtheloginscreen,butratherthanenterlogincredentials,theyenteredsomeoddtext:'or'1'='1.Whatisthebestdescriptionforthisattack?A.Cross-sitescripting.B.Cross-siterequestforgeryC.SQLinjectionD.ARPpoisoning4.Usersarecomplainingthattheycannotconnecttothewirelessnetwork.YoudiscoverthattheWAPsarebeingsubjectedtoawirelessattackdesignedtoblocktheirWi-Fisignals.Whichofthefollowingisthebestlabelforthisattack?A.IVattackB.JammingC.WPSattackD.Botnet5.Frankisdeeplyconcernedaboutattackstohiscompany’se-commerceserver.Heisparticu-larlyworriedaboutcross-sitescriptingandSQLinjection.Whichofthefollowingwouldbestdefendagainstthesetwospecificattacks?A.EncryptedwebtrafficB.InputvalidationC.AfirewallD.AnIDSStudy

Loading page image...

Threats,Attacks,andVulnerabilities36.YouareresponsiblefornetworksecurityatAcmeCompany.Usershavebeenreportingthatpersonaldataisbeingstolenwhenusingthewirelessnetwork.Theyallinsisttheyonlycon-necttothecorporatewirelessaccesspoint(AP).However,logsfortheAPshowthattheseusershavenotconnectedtoit.Whichofthefollowingcouldbestexplainthissituation?A.SessionhijackingB.ClickjackingC.RogueaccesspointD.Bluejacking7.WhattypeofattackdependsontheattackerenteringJavaScriptintoatextareathatisintendedforuserstoentertextthatwillbeviewedbyotherusers?A.SQLinjectionB.ClickjackingC.Cross-sitescriptingD.Bluejacking8.Rickwantstomakeofflinebrute-forceattacksagainsthispasswordfileverydifficultforattackers.Whichofthefollowingisnotacommontechniquetomakepasswordshardertocrack?A.UseofasaltB.UseofapepperC.Useofapurpose-builtpasswordhashingalgorithmD.Encryptingpasswordplaintextusingsymmetricencryption9.WhattermisusedtodescribespamoverInternetmessagingservices?A.SPIMB.SMSPAMC.IMSPAMD.TwoFaceTiming10.Susanisanalyzingthesourcecodeforanapplicationanddiscoversapointere-referenceandreturnsNULL.ThiscausestheprogramtoattempttoreadfromtheNULLpointerandresultsinasegmentationfault.Whatimpactcouldthishavefortheapplication?A.AdatabreachB.Adenial-of-serviceconditionC.PermissionscreepD.Privilegeescalation

Loading page image...

4Chapter1=Threats,Attacks,andVulnerabilities1.Teresaisthesecuritymanagerforamid-sizedinsurancecompany.Shereceivesacallfromlawenforcement,tellingherthatsomecomputersonhernetworkparticipatedinamassivedenial-of-service(DoS)attack.Teresaiscertainthatnoneoftheemployeesathercompanywouldbeinvolvedinacybercrime.Whatwouldbestexplainthisscenario?A.Itisaresultofsocialengineering.B.Themachinesallhavebackdoors.C.Themachinesarebots.D.Themachinesareinfectedwithcrypto-viruses.12.Unusualoutboundnetworktraffic,geographicalirregularities,andincreasesindatabasereadvolumesareallexamplesofwhatkeyelementofthreatintelligence?A.PredictiveanalysisB.OSINTC.IndicatorsofcompromiseD.Threatmaps13.ChrisneedsvisibilityintoconnectionattemptsthroughafirewallbecausehebelievesthataTCPhandshakeisnotproperlyoccurring.Whatsecurityinformationandeventmanagement(SIEM)capabilityisbestsuitedtotroubleshootingthisissue?A.ReviewingreportsB.PacketcaptureC.SentimentanalysisD.Logcollectionandanalysis14.Chriswantstodetectapotentialinsiderthreatusinghissecurityinformationandeventmanagement(SIEM)system.Whatcapabilitybestmatcheshisneeds?A.SentimentanalysisB.LogaggregationC.SecuritymonitoringD.Userbehavioranalysis15.Chrishashundredsofsystemsspreadacrossmultiplelocationsandwantstobetterhandletheamountofdatathattheycreate.Whattwotechnologiescanhelpwiththis?A.LogaggregationandlogcollectorsB.PacketcaptureandlogaggregationC.SecuritymonitoringandlogcollectorsD.Sentimentanalysisanduserbehavioranalysis16.Whattypeofsecurityteamestablishestherulesofengagementforacybersecurityexercise?A.BlueteamB.Whiteteam

Preview Mode

This document has 339 pages. Sign in to access the full document!

Report

Study Now!

Document Details

Related Documents

CompTIA CySA+ Study Guide, 3rd Edition (2023)

CompTIA CySA+ Cybersecurity Analyst Certification All-in-One Exam Guide (Exam CS0-003) (2024)

CompTIA DataX Study Guide: Exam DY0-001 (2024)

CompTIA CySA+ Practice Tests: Exam CS0-003 (2023)

CompTIA Tech+ CertMike Exam FC0-U71 (2024)

CompTIA Security+ Practice Tests: Exam SY0-701 (2024)

CompTIA Network+ Study Guide: Exam N10-009 (2024)

CompTIA Network+ Practice Tests: Exam N10-009 (2024)

CompTIA DataSys+ Study Guide : Exam DS0-001 (2023)

CompTIA Security+ Study Guide with over 500 Practice Test Questions : Exam SY0-701 (2023)

Company

Explore

Study Tools