SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
Comptia Security +: Cyber Ops
Start Test
Study First
Subjects
:
certifications
,
comptia-security-+
,
it-skills
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. When used alone - which of the following controls mitigates the risk of River Tam - an attacker - launching an online brute force password attack?
Account lockout
Compare hashes of the original source and system image.
AP power levels
Antenna placement; Power levels
2. Which of the following security tools can Starbuck - a security administrator - use to deter theft?
Cable locks
The IDS does not identify a buffer overflow
Change management
NIPS
3. A company wants to have a backup site that is a good balance between cost and recovery time objectives. Which of the following is the BEST solution?
Warm site
Anti-spam
Install application updates
Failsafe
4. Traffic has stopped flowing to and from the company network after the inline IPS hardware failed. Which of the following has occurred?
Information classification policy; Network access policy; Auditing and monitoring policy
Proxy server
Failsafe
Blowfish
5. River Tam - a security administrator - is noticing a slow down in the wireless network response. River Tam launches a wireless sniffer and sees a large number of ARP packets being sent to the AP. Which of the following type of attacks is underway?
Time of day restrictions;Access control lists
IV attack
Penetration testing
Something you are
6. Which of the following types of data encryption would Starbuck - a security administrator - use if MBR and the file systems needed to be included?
Full disk
The DES algorithm is run three consecutive times against the item being encrypted.
Change management
Personal firewall
7. Which of the following attacks is manifested as an embedded HTML image object or JavaScript image tag in an email?
Humidity controls
Cross-site scripting
Sanitization using appropriate software
Single sign-on
8. Mal is reporting an excessive amount of junk mail on the network email server. Which of the following would ONLY reduce the amount of unauthorized mail?
Anti-spam
Zero day attack
The DES algorithm is run three consecutive times against the item being encrypted.
Spam fitters
9. Which of the following is where an unauthorized device is found allowing access to a network?
Compare hashes of the original source and system image.
80
Rogue access point
Zero day
10. Which of the following accurately describes the STRONGEST multifactor authentication?
Something you are - something you have
Cable locks
P2P
Install both the private and the public key on the web server.
11. River Tam - the software security engineer - is trying to detect issues that could lead to buffer overflows or memory leaks in the company software. Which of the following would help River Tam automate this detection?
22
Fuzzing
Log reviews
UDP 53
12. River Tam - an administrator - suspects a denial of service attack on the network - but does not know where the network traffic is coming from or what type of traffic it is. Which of the following would help River Tam further assess the situation?
Firewall
Protocol analyzer
Impersonation
Install both the private and the public key on the web server.
13. Which of the following ports should be open in order for River Tam and Mal - users - to identify websites by domain name?
ARP poisoning
UDP 53
SSH
Verify the user's identity
14. Which of the following inspects traffic entering or leaving a network to look for anomalies against expected baselines?
Application hardening
ARP poisoning
Impersonation
IPS
15. Which of the following encrypts the body of a packet - rather than just the password - while sending information?
TACACS+
Rootkit
Business impact assessment
Remotely initiate a device wipe
16. The fundamental information security principals include confidentiality - availability and which of the following?
The DES algorithm is run three consecutive times against the item being encrypted.
Port scan
Antenna placement; Power-level control
The capacity of a system to resist unauthorized changes to stored information
17. River Tam - a security administrator - has configured a trusted OS implementation on her servers. Which of the following controls are enacted by the trusted OS implementation?
Penetration test
Mean time to restore
Clean desk policy
Mandatory Access Controls
18. Which of the following techniques floods an application with data in an attempt to find vulnerabilities?
DES;3 DES
ARP poisoning
Fuzzing
Clustering
19. Employees are reporting that they are receiving unusual calls from the help desk for the purpose of verifying their user credentials. Which of the following attack types is occurring?
Warm site
Vishing
80
PEAP
20. Which of the following is used by Jayne - a security administrator - to lower the risks associated with electrostatic discharge - corrosion - and thermal breakdown?
Worm outbreak
Install both the private and the public key on the web server.
80
Temperature and humidity controls
21. Which of the following describes the ability for a third party to verify the sender or recipient of a given electronic message during authentication?
Account expiration
Non-repudiation
River Tam - the attacker - overwhelms a system or application - causing it to crash and bring the server down to cause an outage.
PII handling
22. Which of the following is the BEST solution to securely administer remote servers?
Continuous monitoring
Port scanner
Clean desk policy
SSH
23. An application programmer reports to River Tam - the security administrator - that the antivirus software installed on a server is interfering with one of the production HR applications - and requests that antivirus be temporarily turned off. How sho
Create file hashes for website and critical system files - and compare the current file hashes to the baseline at regular time intervals.
Sanitization using appropriate software
Ask the programmer to replicate the problem in a test environment.
Mandatory access control
24. A company has sent all of its private keys to a third party. The third party company has created a secure list of these keys. Which of the following has just been implemented?
Key escrow
Warm site
Cross-site scripting
Change management
25. Which of the following does Starbuck - a software developer - need to do after compiling the source code of a program to attest the authorship of the binary?
26. Which of the following is a best practice when securing a switch from physical access?
Dual-homing a server
RAS
Disable unused ports
Cross-site scripting
27. Which of the following is a policy that would force all users to organize their areas as well as help in reducing the risk of possible data theft?
Port scanner
To limit the number of endpoints connected through the same switch port
Clean desk policy
The DES algorithm is run three consecutive times against the item being encrypted.
28. Which of the following is a feature of Kerberos?
The security company is provided with no information about the corporate network or physical locations.
Dual-homing a server
Single sign-on
The DES algorithm is run three consecutive times against the item being encrypted.
29. Which of the following should Mal - an administrator - use to verify the integrity of a downloaded file?
MD5
Key escrow
File encryption
Vishing
30. After setting up a root CA. which of the following can Mal - a security administrator - implement to allow intermediate CAs to handout keys and certificates?
Validate the identity of an email sender;Encrypt messages;Decrypt messages
Trust model
Warm site
Error handling
31. Mal - a security administrator - has configured and implemented an additional public intermediate CA. Which of the following must Mal submit to the major web browser vendors in order for the certificates - signed by this intermediate - to be trusted?
32. Which of the following attacks is characterized by River Tam attempting to send an email from a Chief Information Officer's (CIO's) non-corporate email account to an IT staff member in order to have a password changed?
Temperature and humidity controls
Protocol analyzers
Impersonation
Passive finger printing
33. In a wireless network - which of the following components could cause too much coverage - too little coverage - and interference?
AP power levels
The system shall require users to authenticate to the system with a combination of a password or PIN and a smartcard
Fraggle attack
Validate the identity of an email sender;Encrypt messages;Decrypt messages
34. Jayne's CRL is over six months old. Which of the following could Jayne do in order to ensure he has the current information?
Update the CRL; Deploy OCSP
Accounting should be given read/write access to network share A and read access to network share B. River Tam should be given read access for the specific document on network share A.
Remote wipe
Cold site
35. A valid server-role in a Kerberos authentication system
RBAC
To limit the number of endpoints connected through the same switch port
Penetration test
Ticket granting server
36. Which of the following activities should be completed in order to detect anomalies on a network?
Logic bomb
The security company is provided with no information about the corporate network or physical locations.
CRL
Log reviews
37. Which of the following would be the BEST reason for Starbuck - a security administrator - to initially select individual file encryption over whole disk encryption?
River Tam - the attacker - overwhelms a system or application - causing it to crash and bring the server down to cause an outage.
It is faster to encrypt an individual file.
Device encryption
Business impact assessment
38. A packet filtering firewall can protect from which of the following?
Personal firewall
TPM
Port scan
Key escrow
39. The corporate NIPS requires a daily download from its vendor with updated definitions in order to block the latest attacks. Which of the following describes how the NIPS is functioning?
Signature based
Account lockout
Anti-spam
Subnetting
40. Jayne - a security administrator - has noticed that the website and external systems have been subject to many attack attempts. To verify integrity of the website and critical files - Jayne should
Temperature and humidity controls
Create file hashes for website and critical system files - and compare the current file hashes to the baseline at regular time intervals.
Gray box
RBAC
41. A company is installing a wireless network in a building that houses several tenants. Which of the following should be considered to make sure none of the other tenants can detect the company's wireless network?
Fuzzing
Dual-homing a server
Antenna placement; Power levels
Subnetting
42. Which of the following is BEST utilized to actively test security controls on a particular system?
Assign multiple roles to the existing user ID
NTLM
Penetration test
Clean desk policy
43. Which of the following is a reason why Mal - a security administrator - would implement port security?
To limit the number of endpoints connected through the same switch port
Shoulder surfing
SSH
Mitigate risk and develop a maintenance plan.
44. Starbuck - a VPN administrator - was asked to implement an encryption cipher with a MINIMUM effective security of 128-bits. Which of the following should Starbuck select for the tunnel encryption?
Blowfish
Fraggle attack
Social engineering
Business impact assessment
45. Which of the following attacks would be used if River Tam - a user - is receiving unwanted text messages?
Blue jacking
PEAP-MSCHAPv2
Fail state of the system
Cable locks
46. River Tam - an attacker - is recording a person typing in their ID number into a keypad to gain access to the building. River Tam then calls the helpdesk and informs them that their PIN no longer works and would like to change it. Which of the follow
IPS
Impersonation
Non-repudiation
Key escrow
47. Which of the following reduces the likelihood of a single point of failure when a server fails?
Clustering
TACACS+; SSH
Deploying and using a trusted OS
Validate the identity of an email sender;Encrypt messages;Decrypt messages
48. River Tam - a network security administrator - has been tasked with setting up a guest wireless network for her corporation. The requirements for this connection state that it must have password authentication - with passwords being changed every wee
WPA2-PSK
Succession planning
Verify the user's identity
Server-side input validation results in a more secure system than client-side input validation.
49. A company notices that there is a flaw in one of their proprietary programs that the company runs in-house. The flaw could cause damage to the HVAC system. Which of the following would the company transfer to an insurance company?
Private key
CRL
TACACS+; SSH
Risk
50. A company needs to remove sensitive data from hard drives in leased computers before the computers are returned to the supplier. Which of the following is the BEST solution?
Deploying and using a trusted OS
Spam fitters
Antenna placement; Power-level control
Sanitization using appropriate software
