What are the three types of authentication?


A. Something you: know, remember, prove
B. Something you: have, know, are
C. Something you: show, prove, are
D. Something you: show, have, prove

How is sniffing broadly categorized?


A. Active and passive
B. Broadcast and unicast
C. Unmanaged and managed
D. Filtered and unfiltered

Which of the following does proper basic configuration of snort as a network intrusion detection system require?


A. Limit the packets captured to the snort configuration file.
B. Capture every packet on the network segment.
C. Limit the packets captured to a single segment.
D. Limit the packets captured to the /var/log/snort directory.

A company is using Windows Server 2003 for its Active Directory (AD). What is the most efficient way to crack the passwords for the AD users?


A. Perform a dictionary attack.
B. Perform a brute force attack.
C. Perform an attack with a rainbow table.
D. Perform a hybrid attack.

What is the broadcast address for the subnet 190.86.168.0/22?


A. 190.86.168.255
B. 190.86.255.255
C. 190.86.171.255
D. 190.86.169.255

A security engineer is attempting to map a companys internal network. The engineer enters in the following NMAP command:
NMAP n sS P0 p 80 ***.***.**.**
What type of scan is this?


A. Quick scan
B. Intense scan
C. Stealth scan
D. Comprehensive scan

Which of the following is used to indicate a single-line comment in structured query language (SQL)?


A. —
B. ||
C. %%
D. ''

Which tool can be used to silently copy files from USB devices?


A. USB Grabber
B. USB Dumper
C. USB Sniffer
D. USB Snoopy

An attacker has been successfully modifying the purchase price of items purchased on the company's web site. The security administrators verify the web server and Oracle database have not been compromised directly. They have also verified the Intrusion
Detection System (IDS) logs and found no attacks that could have caused this. What is the mostly likely way the attacker has been able to modify the purchase price?


A. By using SQL injection
B. By changing hidden form values
C. By using cross site scripting
D. By utilizing a buffer overflow attack

Which of the following viruses tries to hide from anti-virus programs by actively altering and corrupting the chosen service call interruptions when they are being run?


A. Cavity virus
B. Polymorphic virus
C. Tunneling virus
D. Stealth virus