What is the best Nmap command to use when you want to list all devices in the same network quickly after you successfully identified a server whose IP address is 10.10.0.5?


A. nmap -T4 -F 10.10.0.0/24
B. nmap -T4 -q 10.10.0.0/24
C. nmap -T4 -O 10.10.0.0/24
D. nmap -T4 -r 10.10.1.0/24

If you are to determine the attack surface of an organization, which of the following is the BEST thing to do?


A. Running a network scan to detect network services in the corporate DMZ
B. Reviewing the need for a security clearance for each employee
C. Using configuration management to determine when and where to apply security patches
D. Training employees on the security policy regarding social engineering

Which of the following tools is used by pen testers and analysts specifically to analyze links between data using link analysis and graphs?


A. Metasploit
B. Wireshark
C. Maltego
D. Cain & Abel

While doing a technical assessment to determine network vulnerabilities, you used the TCP XMAS scan. What would be the response of all open ports?


A. The port will send an ACK
B. The port will send a SYN
C. The port will ignore the packets
D. The port will send an RST

It is a widely used standard for message logging. It permits separation of the software that generates messages, the system that stores them, and the software that reports and analyzes them. This protocol is specifically designed for transporting event messages.
Which of the following is being described?


A. SNMP
B. ICMP
C. SYSLOG
D. SMS

While doing a Black box pen test via the TCP port (80), you noticed that the traffic gets blocked when you tried to pass IRC traffic from a web enabled host. However, you also noticed that outbound HTTP traffic is being allowed. What type of firewall is being utilized for the outbound traffic?


A. Stateful
B. Application
C. Circuit
D. Packet Filtering

What kind of risk will remain even if all theoretically possible safety measures would be applied?


A. Residual risk
B. Inherent risk
C. Impact risk
D. Deferred risk

Backing up data is a security must. However, it also have certain level of risks when mishandled. Which of the following is the greatest threat posed by backups?


A. A backup is the source of Malware or illicit information
B. A backup is incomplete because no verification was performed
C. A backup is unavailable during disaster recovery
D. An unencrypted backup can be misplaced or stolen

The chance of a hard drive failure is known to be once every four years. The cost of a new hard drive is $500. EF (Exposure Factor) is about 0.5. Calculate for the Annualized Loss Expectancy (ALE).


A. $62.5
B. $250
C. $125
D. $65.2
$125
D. $65.2

TCP/IP stack fingerprinting is the passive collection of configuration attributes from a remote device during standard layer 4 network communications. Which of the following tools can be used for passive OS fingerprinting?


A. nmap
B. ping
C. tracert
D. tcpdump