You now have access to the company network. What testing method did you use?
You are tasked to perform a penetration test. While you are performing information gathering, you find an employee list in Google. You find the receptionist’s email, and you send her an email changing the source email to her boss’s email (boss@company). In this email, you ask for a pdf with information. She reads your email […]
Which of the following is the structure designed to verify and authenticate the identity of individuals within
Which of the following is the structure designed to verify and authenticate the identity of individuals within the enterprise taking part in a data exchange? A. SOA B. biometrics C. single sign on D. PKI
If you want to only scan fewer ports than the default scan using Nmap tool, which option would you use?
If you want to only scan fewer ports than the default scan using Nmap tool, which option would you use? A. –r B. –F C. –P D. –sP
What is a possible source of this problem?
A new wireless client is configured to join a 802.11 network. This client uses the same hardware and software as many of the other clients on the network. The client can see the network, but cannot connect. A wireless packet sniffer shows that the Wireless Access Point (WAP) is not responding to the association requests […]
At what layer of the OSI layer does the encryption and decryption of the message take place?
User A is writing a sensitive email message to user B outside the local network. User A has chosen to use PKI to secure his message and ensure only user B can read the sensitive email. At what layer of the OSI layer does the encryption and decryption of the message take place? A. Application […]
Identify the web application attack where the attackers exploit vulnerabilities in dynamically generated web p
Identify the web application attack where the attackers exploit vulnerabilities in dynamically generated web pages to inject client-side script into web pages viewed by other users. A. LDAP Injection attack B. Cross-Site Scripting (XSS) C. SQL injection attack D. Cross-Site Request Forgery (CSRF)
Which service in a PKI will vouch for the identity of an individual or company?
Which service in a PKI will vouch for the identity of an individual or company? A. KDC B. CR C. CBC D. CA
What Web browser-based security vulnerability was exploited to compromise the user?
While performing online banking using a Web browser, a user receives an email that contains a link to an interesting Web site. When the user clicks on the link, another Web browser session starts and displays a video of cats playing a piano. The next business day, the user receives what looks like an email […]