Question 1

List the five techniques used by social engineers in their attempts to gain information from unsuspecting people.

Accepted Answer

-Urgency
-Quid pro q

Question 2

The HTTP ____ method is the same as the GET method, but retrieves only the header information of an HTML document, not the document body.

Accepted Answer

A) CONNECT 
B) PUT 
C) POST 
D) HEAD 
A) CONNECT 
B) PUT 
C) POST 
D) HEAD

Question 3

Network attacks often begin by gathering information from a company's Web site.

Accepted Answer

A) True 
 B)False

Question 4

The HTTP ____________________ method is used with a proxy that can dynamically switch to a tunnel connection, such as Secure Socket Layer (SSL).

Accepted Answer

The answer of The HTTP ____________________ method is used with...

Question 5

As a security tester, should you use social-engineering tactics?

Accepted Answer

As a security tester,you should never us

Question 6

Wget is a tool that can be used to retrieve HTTP, HTTPS, and FTP files over the Internet.

Accepted Answer

A) True 
 B)False

Question 7

Elaborate on the following statement: "The most difficult job of a security professional is preventing social engineers from getting crucial information from company employees."

Accepted Answer

No matter how thorough a security policy

Question 8

To help prevent ____ attacks, you must educate your users not to type logon names and passwords when someone is standing directly behind them-or even standing nearby.

Accepted Answer

A) shoulder-surfing 
B) footprinting 
C) piggybacking 
D) social engineering 
A) shoulder-surfing 
B) footprinting 
C) piggybacking 
D) social engineering

Question 9

Why is ATM shoulder surfing much easier than computer shoulder surfing?

Accepted Answer

ATM theft is much easier than computer s

Question 10

MATCHING
Match each term with the correct statement below.
-Request not made by client in allotted time

Accepted Answer

A) HTTP 400 Bad Request 
B) HTTP 403 Forbidden 
C) HTTP 404 Not Found 
D) HTTP 405 Method Not Allowed 
E) HTTP 408 Request Timeout
F)HTTP 500 Internal Server Error
G)HTTP 502 Bad Gateway
H)HTTP 503 Service Unavailable
I)HTTP 504 Gateway Timeout 
A) HTTP 400 Bad Request 
B) HTTP 403 Forbidden 
C) HTTP 404 Not Found 
D) HTTP 405 Method Not Allowed 
E) HTTP 408 Request Timeout
F)HTTP 500 Internal Server Error
G)HTTP 502 Bad Gateway
H)HTTP 503 Service Unavailable
I)HTTP 504 Gateway Timeout

Question 11

Some cookies can cause security issues because unscrupulous people might store personal information in cookies that can be used to attack a computer or server.

Accepted Answer

A) True 
 B)False

Question 12

The HTTP ____ method retrieves data by URI.

Accepted Answer

A) GET 
B) PUT 
C) POST 
D) HEAD 
A) GET 
B) PUT 
C) POST 
D) HEAD

Question 13

A(n) ____________________ is a text file generated by a Web server and stored on a user's browser.

Accepted Answer

The answer of A(n) ____________________ is a text file generated...

Question 14

____ is the most basic HTTP method.

Accepted Answer

A) GET 
B) PUT 
C) CONNECT 
D) HEAD 
A) GET 
B) PUT 
C) CONNECT 
D) HEAD

Question 15

____ is a tool that is used to gather IP and domain information.

Accepted Answer

A) Whois 
B) Netcat 
C) Metis 
D) Dig 
A) Whois 
B) Netcat 
C) Metis 
D) Dig

Question 16

____ is a tool that is used to perform DNS zone transfers.

Accepted Answer

A) Whois 
B) Netcat 
C) Metis 
D) Dig 
A) Whois 
B) Netcat 
C) Metis 
D) Dig

Question 17

MATCHING
Match each term with the correct statement below.
-Request not understood by server

Accepted Answer

A) HTTP 400 Bad Request 
B) HTTP 403 Forbidden 
C) HTTP 404 Not Found 
D) HTTP 405 Method Not Allowed 
E) HTTP 408 Request Timeout
F)HTTP 500 Internal Server Error
G)HTTP 502 Bad Gateway
H)HTTP 503 Service Unavailable
I)HTTP 504 Gateway Timeout 
A) HTTP 400 Bad Request 
B) HTTP 403 Forbidden 
C) HTTP 404 Not Found 
D) HTTP 405 Method Not Allowed 
E) HTTP 408 Request Timeout
F)HTTP 500 Internal Server Error
G)HTTP 502 Bad Gateway
H)HTTP 503 Service Unavailable
I)HTTP 504 Gateway Timeout

Question 18

What is "competitive intelligence"?

Accepted Answer

If you want to open a piano studio to co

Question 19

The ____________________ utility gives you information on a company's IP addresses and any other domains the company might be part of.

Accepted Answer

The answer of The ____________________ utility gives you information on...

Question 20

The HTTP CONNECT method starts a remote application-layer loopback of the request message.

Accepted Answer

A) True 
 B)False

List the five techniques used by social engineers in their attempts to gain information from unsuspecting people.

The HTTP ____ method is the same as the GET method, but retrieves only the header information of an HTML document, not the document body.

Network attacks often begin by gathering information from a company's Web site.

The HTTP ____________________ method is used with a proxy that can dynamically switch to a tunnel connection, such as Secure Socket Layer (SSL).

As a security tester, should you use social-engineering tactics?

Wget is a tool that can be used to retrieve HTTP, HTTPS, and FTP files over the Internet.

Elaborate on the following statement: "The most difficult job of a security professional is preventing social engineers from getting crucial information from company employees."

To help prevent ____ attacks, you must educate your users not to type logon names and passwords when someone is standing directly behind them-or even standing nearby.

Why is ATM shoulder surfing much easier than computer shoulder surfing?

MATCHING Match each term with the correct statement below. -Request not made by client in allotted time

Some cookies can cause security issues because unscrupulous people might store personal information in cookies that can be used to attack a computer or server.

The HTTP ____ method retrieves data by URI.

A(n) ____________________ is a text file generated by a Web server and stored on a user's browser.

____ is the most basic HTTP method.

____ is a tool that is used to gather IP and domain information.

____ is a tool that is used to perform DNS zone transfers.

MATCHING Match each term with the correct statement below. -Request not understood by server

What is "competitive intelligence"?

The ____________________ utility gives you information on a company's IP addresses and any other domains the company might be part of.

The HTTP CONNECT method starts a remote application-layer loopback of the request message.

Ethical Hacking Overview

Tcpip Concepts Review

Network and Computer Attacks

Port Scanning

Enumeration

Programming for Security Professionals

Desktop and Server Os Vulnerabilities

Embedded Operating Systems: The Hidden Threat

Hacking Web Servers

Hacking Wireless Networks

Cryptography

Network Protection Systems

Filters

Exam 4: Footprinting and Social Engineering

List the five techniques used by social engineers in their attempts to gain information from unsuspecting people.

The HTTP ____ method is the same as the GET method, but retrieves only the header information of an HTML document, not the document body.

Network attacks often begin by gathering information from a company's Web site.

The HTTP ____________________ method is used with a proxy that can dynamically switch to a tunnel connection, such as Secure Socket Layer (SSL).

As a security tester, should you use social-engineering tactics?

Wget is a tool that can be used to retrieve HTTP, HTTPS, and FTP files over the Internet.

Elaborate on the following statement: "The most difficult job of a security professional is preventing social engineers from getting crucial information from company employees."

To help prevent ____ attacks, you must educate your users not to type logon names and passwords when someone is standing directly behind them-or even standing nearby.

Why is ATM shoulder surfing much easier than computer shoulder surfing?

MATCHING Match each term with the correct statement below. -Request not made by client in allotted time

Some cookies can cause security issues because unscrupulous people might store personal information in cookies that can be used to attack a computer or server.

The HTTP ____ method retrieves data by URI.

A(n) ____________________ is a text file generated by a Web server and stored on a user's browser.

____ is the most basic HTTP method.

____ is a tool that is used to gather IP and domain information.

____ is a tool that is used to perform DNS zone transfers.

MATCHING Match each term with the correct statement below. -Request not understood by server

What is "competitive intelligence"?

The ____________________ utility gives you information on a company's IP addresses and any other domains the company might be part of.

The HTTP CONNECT method starts a remote application-layer loopback of the request message.

Ethical Hacking Overview

Tcpip Concepts Review

Network and Computer Attacks

Port Scanning

Enumeration

Programming for Security Professionals

Desktop and Server Os Vulnerabilities

Embedded Operating Systems: The Hidden Threat

Hacking Web Servers

Hacking Wireless Networks

Cryptography

Network Protection Systems

Filters