Sally is a network admin for a small company. She was asked to install wireless accesspoints in
the building. In looking at the specifications for the access-points, she sees that all of them offer
WEP. Which of these are true about WEP?

Select the best answer.

A company is using Windows Server 2003 for its Active Directory (AD). What is the most efficient
way to crack the passwords for the AD users?

Joe Hacker is going wardriving. He is going to use PrismStumbler and wants it to go to a GPS
mapping software application. What is the recommended and well-known GPS mapping package
that would interface with PrismStumbler?
Select the best answer.

When an alert rule is matched in a network-based IDS like snort, the IDS does which of the
following?

Virus Scrubbers and other malware detection program can only detect items that they are aware
of. Which of the following tools would allow you to detect unauthorized changes or modifications of
binary files on your system by unknown malware?

Passive reconnaissance involves collecting information through which of the following?

What are the main drawbacks for anti-virus software?

During a penetration test, the tester conducts an ACK scan using NMAP against the external
interface of the DMZ firewall. NMAP reports that port 80 is unfiltered. Based on this response,
which type of packet inspection is the firewall conducting?

What is the best means of prevention against viruses?

What is the main reason the use of a stored biometric is vulnerable to an attack?