1.
(04.01 MC)
The main purpose of an intrusion detection system is to (5 points)
analyze network traffic
block malicious malware
prevent adware
filter and block web browsing activity
2.
(04.01 LC)
Intrusion detection system sensors are responsible for (5 points)
collecting data on network traffic
determining if intrusion detection has occurred
providing guidance on network breaches
determining if a security breach has occurred
3.
(04.01 LC)
Which logical component of an intrusion detection system is responsible for determining if an intrusion has occurred? (5 points)
Analyzers
Network interface
Sensors
User interface
4.
(04.02 LC)
Which of the following captures information from a single host, such as a firewall? (5 points)
Time stamp
NIDS
HIDS
Detector
5.
(04.02 MC)
Jax is a system administrator and has noticed an increase in false positive alerts from the network IDS. Why are false positives considered dangerous? (5 points)
They can blind Jax from noticing an actual attack.
They lack incident timestamps.
They are usually malware attacks.
They use up system resources.
6.
(04.03 LC)
Which of the following classifies critical data and identifies violations of policies defined by organizations? (5 points)
ATP
DLP
FTP
UTM
7.
(04.03 LC)
A _________ cyberattack occurs when a flaw or vulnerability is exploited before a patch can be created. (5 points)
virus
spyware
malware
zero-day
8.
(04.03 MC)
Hailey is an intern for a large technology company and was asked to find a list of IP addresses currently using the network. What type of scanning will Hailey use to do this? (5 points)
Port scanning
Vulnerability scanning
Network scanning
Web scanning
9.
(04.04 LC)
Which scanning tool can show the MAC address of the interface associated with each IP address the local host has recently communicated with? (5 points)
ipconfig
NMAP
ping
control
10.
(05.01 MC)
Which of the following is considered a limitation of virtualization? (5 points)
Fewer servers means greater impact from hardware failures.
It is challenging to test different security situations.
It is harder to alleviate hardware vulnerabilities.
Costs are higher because more devices are required.
11.
(05.01 LC)
What does a hacker use to run code on a virtual machine to allow an operating system to break out and interact directly with the hypervisor? (5 points)
IP targeting
VM escaping
Spoofing
Tailgating
12.
(05.01 MC)
Sampson received an instant message from someone claiming to work for her company's HR department. It said the company was updating their software and her account would be suspended unless she provided her personal login username and password. Which type of social engineering scam is this? (5 points)
Pretexting
Quid pro quo
Baiting
Phishing
13.
(05.01 MC)
_________ is the term for when someone harasses another person on the internet in an attempt to steal their personal information. (5 points)
Snooping
Eavesdropping
Cyberstalking
Phishing