SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Cyber Ops
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Employees are reporting that they are receiving unusual calls from the help desk for the purpose of verifying their user credentials. Which of the following attack types is occurring?
VLAN mismatch is occurring.
SSH
Vishing
RADIUS
2. Which of the following security chips does BitLocker utilize?
Spam fitters
Risk avoidance
TPM
Antenna placement; Power-level control
3. Hashing algorithms are used to address which of the following?
Mandated security configurations have been made to the operating system.
Integrity
Verify the user's identity
Proxies
4. Which of the following is BEST associated with PKI?
Succession planning
Rogue access point
Private key
Firewall
5. River Tam - an attacker - calls the company's from desk and tries to gain insider information by providing specific company information to gain the attendant's trust. The front desk immediately alerts the IT department about this incident. This is an
Impersonation
Protocol analyzers
Information classification policy; Network access policy; Auditing and monitoring policy
Something you are
6. Which of the following is an example of authentication using something Starbuck - a user - has and something she knows?
GSM phone card and PIN
Accounting should be given read/write access to network share A and read access to network share B. River Tam should be given read access for the specific document on network share A.
Remote data wipe
Sanitization using appropriate software
7. Which of the following network devices will prevent port scans?
UDP 53
Continuous monitoring
Personal firewall
Firewall
8. Jayne - a security administrator - has noticed that the website and external systems have been subject to many attack attempts. To verify integrity of the website and critical files - Jayne should
Create file hashes for website and critical system files - and compare the current file hashes to the baseline at regular time intervals.
Dual-homing a server
Remote data wipe
Account lockout
9. Which of the following is Starbuck - a security administrator - MOST likely implementing when deleting all the unneeded files and modules of a newly install application?
Application hardening
E-discovery
RADIUS
Temperature and humidity controls
10. Jayne - a systems security engineer - is determining which credential-type authentication to use within a planned 802.1x deployment. He is looking for a method that does not require a client certificate - has a server side certificate - and uses TLS
Change management
LDAP
PEAP-MSCHAPv2
MD5
11. Which of the following allows a server to request a website on behalf of Starbuck - a user?
Proxies
Account expiration
PII handling
Private key
12. While conducting a network audit - River Tam - a security administrator - discovers that most clients are routing their network traffic through a desktop client instead of the company router. Which of the following is this attack type?
ARP poisoning
Impersonation
Worm outbreak
Loop protection
13. Which of the following is used by Jayne - a security administrator - to lower the risks associated with electrostatic discharge - corrosion - and thermal breakdown?
Mandated security configurations have been made to the operating system.
Temperature and humidity controls
Antenna placement; Power levels
SNMPv3
14. Which of the following is the MAIN benefit of server-side versus client-side input validation?
Account lockout
Server-side input validation results in a more secure system than client-side input validation.
Firewall
War chalking
15. River Tam - a network security administrator - has been tasked with setting up a guest wireless network for her corporation. The requirements for this connection state that it must have password authentication - with passwords being changed every wee
Install both the private and the public key on the web server.
Fuzzing
WPA2-PSK
Social engineering
16. Mal - the Chief Executive Officer (CEO) of a company - has increased his travel plans for the next two years to improve business relations. Which of the following would need to be in place in case something happens to Pete?
Create file hashes for website and critical system files - and compare the current file hashes to the baseline at regular time intervals.
Succession planning
Impact; Likelihood
War chalking
17. Starbuck - the administrator - is tasked with deploying a strong encryption cipher. Which of the following ciphers would she be the LEAST likely to choose?
Cross-site scripting
Passive finger printing
Two fish
Device encryption
18. The human resources department of a company has requested full access to all network resources - including those of the financial department. Starbuck - the administrator - denies this - citing...
Separation of duties
To limit the number of endpoints connected through the same switch port
SNMPv3
Something you are - something you have
19. When moving from an internally controlled environment to a fully outsourced infrastructure environment - such as cloud computing - it is MOST important to...
Encrypt all confidential data.
LDAP
Account lockout
Anti-spam
20. River Tam - a security administrator - suspects that a web server may be under attack. The web logs have several entries containing variations of the following entries: 'or 1=1-- or1'=1-- 'or1=1'
SQL injection
Social engineering
NTLM
PII handling
21. Which of the following administrative controls BEST mitigates the risk of ongoing inappropriate employee activities in sensitive areas?
IPS
Mandatory vacations
The IDS does not identify a buffer overflow
Personally owned devices
22. Mal is reporting an excessive amount of junk mail on the network email server. Which of the following would ONLY reduce the amount of unauthorized mail?
Temperature and humidity controls
Risk
Spam fitters
Discretionary access control
23. Which of the following security tools can Starbuck - a security administrator - use to deter theft?
Cable locks
Loop protection
Separation of duties
Image hashes
24. 3DES is created when which of the following scenarios occurs?
Personally owned devices
The DES algorithm is run three consecutive times against the item being encrypted.
Power levels
Impact; Likelihood
25. River Tam - a security administrator - has generated a key pair for the company web server. Which of the following should she do next to ensure all web traffic to the company web server is encrypted?
Install both the private and the public key on the web server.
Detective
Public key
RAS
26. Which of the following elements makes up the standard equation used to define risk?
Power levels
Antenna placement; Power levels
Botnets
Impact; Likelihood
27. While traveling Jayne - an employee - decides he would like to download some new movies onto his corporate laptop. While installing software designed to download movies from multiple computers across the Internet. Jayne agrees to share portions of hi
P2P
Encrypt all confidential data.
Cold site
CA
28. After setting up a root CA. which of the following can Mal - a security administrator - implement to allow intermediate CAs to handout keys and certificates?
SSH
Trust model
Non-repudiation
21
29. Which of the following ports should be open in order for River Tam and Mal - users - to identify websites by domain name?
UDP 53
Spam filter
Antenna placement; Power-level control
Disable unused ports
30. Which of the following is the BEST solution to securely administer remote servers?
Mandatory Access Controls
SSH
Separation of duties
Personal firewall
31. When used alone - which of the following controls mitigates the risk of River Tam - an attacker - launching an online brute force password attack?
Account lockout
War chalking
Sanitization using appropriate software
Code review
32. A company is installing a wireless network in a building that houses several tenants. Which of the following should be considered to make sure none of the other tenants can detect the company's wireless network?
MAC filtering
Antenna placement; Power levels
22
The IDS does not identify a buffer overflow
33. Which of the following is used to verify the identity of the sender of a signed email?
Trust model
Public key
Private key
Separation of duties
34. The Chief Information Security Officer (CISO) tells the network administrator that a security company has been hired to perform a penetration test against their network. The security company asks the CISO which type of testing would be most beneficia
Sanitization using appropriate software
Firewall
Use Starbuck's private key to sign the binary
The security company is provided with no information about the corporate network or physical locations.
35. River Tam - a security analyst - suspects that a rogue web server is running on the network. Which of the following would MOST likely be used to identify the server's IP address?
Rootkit
Single sign-on
Server-side input validation results in a more secure system than client-side input validation.
Port scanner
36. A company has sent all of its private keys to a third party. The third party company has created a secure list of these keys. Which of the following has just been implemented?
22
Power levels
Something you are
Key escrow
37. Which of the following types of data encryption would Starbuck - a security administrator - use if MBR and the file systems needed to be included?
MD5
Full disk
Update the CRL; Deploy OCSP
Private key
38. Which of the following allows active exploitation of security vulnerabilities on a system or network for the purpose of determining true impact?
Mitigate risk and develop a maintenance plan.
PII handling
Account expiration
Penetration testing
39. Starbuck - a security administrator - wants to prevent users in sales from accessing their servers after 6:00 p.m. - and prevent them from accessing accounting's network at all times. Which of the following should Starbuck implement to accomplish the
Software as a Service
Time of day restrictions;Access control lists
Penetration testing
Establish a MAC limit and age
40. Which of the following combinations represents multifactor authentication?
Separation of duties
Time of day restrictions;Access control lists
Single sign-on
Cipher lock combination and proximity badge
41. Which of the following mitigates the risk of proprietary information being compromised?
Full disk
Public key
File encryption
Impact; Likelihood
42. Social networking sites are used daily by the marketing team for promotional purposes. However - confidential company information - including product pictures and potential partnerships - have been inadvertently exposed to the public by dozens of emp
IV attack
Mandate additional security awareness training for all employees.
Full disk
Host based firewall
43. Which of the following malware types is MOST commonly associated with command and control?
Blue jacking
Botnets
Update the CRL; Deploy OCSP
NTLM
44. Which of the following could River Tam - an administrator - use in a workplace to remove sensitive data at rest from the premises?
Cross-site scripting
Log reviews
Personally owned devices
Establish a MAC limit and age
45. Which of the following inspects traffic entering or leaving a network to look for anomalies against expected baselines?
PEAP
Antenna placement; Power-level control
IPS
SSH
46. While River Tam is logging into the server from her workstation - she notices Mal watching her enter the username and password. Which of the following social engineering attacks is Mal executing?
Shoulder surfing
Business impact assessment
To limit the number of endpoints connected through the same switch port
Blowfish
47. Starbuck - a security technician - wants to implement secure wireless with authentication. Which of the following allows for wireless to be authenticated via MSCHAPv2?
Time of day restrictions;Access control lists
Proxies
Mandate additional security awareness training for all employees.
PEAP
48. River Tam - a user - on a public Wi-Fi network logs into a webmail account and is redirected to a search engine. Which of the following attacks may be occurring?
Evil twin
Protocol analyzer
23
SSH
49. Which of the following can Jayne - an administrator - use to ensure the confidentiality of a file when it is being sent over FTP?
Fuzzing
Port scan
PGP
Memory dump - ARP cache
50. Starbuck - a security administrator - has completed the imaging process for 20 computers that were deployed. The image contains the operating system and all required software. Which of the following is this an example of?
Risk
Mandatory Access Controls
Impersonation
Deploying and using a trusted OS