Question 1

What can a security tester using enumeration tools do?

Accepted Answer

A security tester using enumeration tools can do the following:
-Identify a computer on the network by using port scanning and zone transfers
-Identify the OS the computer is using by conducting port scanning and enumeration
-Identify via enumeration any logon accounts and passwords configured on the computer
-Learn the names of shared folders by using enumeration
-Identify services running on the computer

Question 2

The MBSA can check for user account passwords that have dictionary words in them.

Accepted Answer

A) True 
 B)False  False

Question 3

If the LRK5 rootkit is installed on a Linux computer, entering the Trojaned ____ command allows the attacker's processes to continue running, even though the Linux administrator thinks all processes were killed.

Accepted Answer

A) Killall 
B) Get 
C) target 
D) Dir 
A) Killall 
B) Get 
C) target 
D) Dir A

Question 4

____ is an interprocess communication mechanism that allows a program running on one host to run code on a remote host.

Accepted Answer

A) RPC 
B) NetBIOS 
C) Winsock 
D) NetBEUI 
A) RPC 
B) NetBIOS 
C) Winsock 
D) NetBEUI

Question 5

SMB stands for _________________________.

Accepted Answer

Server Mes

Question 6

SELinux contains several features and modules that use ____, an OS security mechanism that enforces access rules based on privileges for interactions between processes, files, and users.

Accepted Answer

A) Mandatory Access Control (MA
C)  
B) Server Message Block (SM
B)  
C) Common Internet File System (CIFS) 
D) Microsoft Baseline Security Analyzer (MBS
A)  
A) Mandatory Access Control (MA
C)  
B) Server Message Block (SM
B)  
C) Common Internet File System (CIFS) 
D) Microsoft Baseline Security Analyzer (MBS
A)

Question 7

NetBIOS over TCP/IP is called ____ in Windows Server 2003.

Accepted Answer

A) NBT 
B) NetBEUI 
C) NetBT 
D) NetTCP/IP 
A) NBT 
B) NetBEUI 
C) NetBT 
D) NetTCP/IP

Question 8

Complete instructions for MBSA are available from the MBSA Help interface or the ____ site.

Accepted Answer

A) Microsoft Security Tools Web 
B) Microsoft Knowledge Base 
C) Windows Help 
D) Windows On-line Help 
A) Microsoft Security Tools Web 
B) Microsoft Knowledge Base 
C) Windows Help 
D) Windows On-line Help

Question 9

MATCHING
Match each term with the correct statement below.
-gives an intruder a potential point of entry into a network

Accepted Answer

A) antivirus software 
B) port 389 
C) Guest 
D) port 53 
E) port 443
F)port 80
G)unused services
H)Administrator
I)blank 
A) antivirus software 
B) port 389 
C) Guest 
D) port 53 
E) port 443
F)port 80
G)unused services
H)Administrator
I)blank

Question 10

What is Samba used for?

Accepted Answer

Samba is an open-source implementation o

Question 11

MATCHING
Match each term with the correct statement below.
-DNS is associated with this port

Accepted Answer

A) antivirus software 
B) port 389 
C) Guest 
D) port 53 
E) port 443
F)port 80
G)unused services
H)Administrator
I)blank 
A) antivirus software 
B) port 389 
C) Guest 
D) port 53 
E) port 443
F)port 80
G)unused services
H)Administrator
I)blank

Question 12

What is the Common Internet File System (CIFS) protocol?

Accepted Answer

Common Internet File System (CIFS)is a s

Question 13

A common Linux rootkit is ____.

Accepted Answer

A) Back Orfice 
B) Kill Trojans 
C) Packet Storm Security 
D) Linux Rootkit 5 
A) Back Orfice 
B) Kill Trojans 
C) Packet Storm Security 
D) Linux Rootkit 5

Question 14

MATCHING
Match each term with the correct statement below.
-no account should have this type of password

Accepted Answer

A) antivirus software 
B) port 389 
C) Guest 
D) port 53 
E) port 443
F)port 80
G)unused services
H)Administrator
I)blank 
A) antivirus software 
B) port 389 
C) Guest 
D) port 53 
E) port 443
F)port 80
G)unused services
H)Administrator
I)blank

Question 15

In Windows Server 2003 and 2008, how does a domain controller locate resources in a domain?

Accepted Answer

In Windows Server 2003 and 2008,a domain

Question 16

Trusted Computer Solutions____ program is used to tighten Linux system security configuration by using templates.

Accepted Answer

A) OpenVAS 
B) MBSA 
C) SQL Server 
D) Security Blanket 
A) OpenVAS 
B) MBSA 
C) SQL Server 
D) Security Blanket

Question 17

To determine whether a system is vulnerable to an RPC-related issue, the best tool is ____.

Accepted Answer

A) Nessus 
B) Winfingerprint 
C) MBSA 
D) Unicornscan 
A) Nessus 
B) Winfingerprint 
C) MBSA 
D) Unicornscan

Question 18

RPC stands for ________________________.

Accepted Answer

Remote Pro

Question 19

You can use _____________________________________________ information when testing Linux computers for known vulnerabilities.

Accepted Answer

Common Vulnerabiliti

Question 20

Red Hat and Fedora Linux use the ____ command to update and manage RPM packages.

Accepted Answer

A) yum 
B) get 
C) dir 
D) alert 
A) yum 
B) get 
C) dir 
D) alert

What can a security tester using enumeration tools do?

The MBSA can check for user account passwords that have dictionary words in them.

If the LRK5 rootkit is installed on a Linux computer, entering the Trojaned ____ command allows the attacker's processes to continue running, even though the Linux administrator thinks all processes were killed.

____ is an interprocess communication mechanism that allows a program running on one host to run code on a remote host.

SMB stands for _________________________.

SELinux contains several features and modules that use ____, an OS security mechanism that enforces access rules based on privileges for interactions between processes, files, and users.

NetBIOS over TCP/IP is called ____ in Windows Server 2003.

Complete instructions for MBSA are available from the MBSA Help interface or the ____ site.

MATCHING Match each term with the correct statement below. -gives an intruder a potential point of entry into a network

What is Samba used for?

MATCHING Match each term with the correct statement below. -DNS is associated with this port

What is the Common Internet File System (CIFS) protocol?

A common Linux rootkit is ____.

MATCHING Match each term with the correct statement below. -no account should have this type of password

In Windows Server 2003 and 2008, how does a domain controller locate resources in a domain?

Trusted Computer Solutions____ program is used to tighten Linux system security configuration by using templates.

To determine whether a system is vulnerable to an RPC-related issue, the best tool is ____.

RPC stands for ________________________.

You can use _____________________________________________ information when testing Linux computers for known vulnerabilities.

Red Hat and Fedora Linux use the ____ command to update and manage RPM packages.

Ethical Hacking Overview

Tcpip Concepts Review

Network and Computer Attacks

Footprinting and Social Engineering

Port Scanning

Enumeration

Programming for Security Professionals

Embedded Operating Systems: The Hidden Threat

Hacking Web Servers

Hacking Wireless Networks

Cryptography

Network Protection Systems

Filters

Exam 8: Desktop and Server Os Vulnerabilities

What can a security tester using enumeration tools do?

The MBSA can check for user account passwords that have dictionary words in them.

If the LRK5 rootkit is installed on a Linux computer, entering the Trojaned ____ command allows the attacker's processes to continue running, even though the Linux administrator thinks all processes were killed.

____ is an interprocess communication mechanism that allows a program running on one host to run code on a remote host.

SMB stands for _________________________.

SELinux contains several features and modules that use ____, an OS security mechanism that enforces access rules based on privileges for interactions between processes, files, and users.

NetBIOS over TCP/IP is called ____ in Windows Server 2003.

Complete instructions for MBSA are available from the MBSA Help interface or the ____ site.

MATCHING Match each term with the correct statement below. -gives an intruder a potential point of entry into a network

What is Samba used for?

MATCHING Match each term with the correct statement below. -DNS is associated with this port

What is the Common Internet File System (CIFS) protocol?

A common Linux rootkit is ____.

MATCHING Match each term with the correct statement below. -no account should have this type of password

In Windows Server 2003 and 2008, how does a domain controller locate resources in a domain?

Trusted Computer Solutions____ program is used to tighten Linux system security configuration by using templates.

To determine whether a system is vulnerable to an RPC-related issue, the best tool is ____.

RPC stands for ________________________.

You can use _____________________________________________ information when testing Linux computers for known vulnerabilities.

Red Hat and Fedora Linux use the ____ command to update and manage RPM packages.

Ethical Hacking Overview

Tcpip Concepts Review

Network and Computer Attacks

Footprinting and Social Engineering

Port Scanning

Enumeration

Programming for Security Professionals

Embedded Operating Systems: The Hidden Threat

Hacking Web Servers

Hacking Wireless Networks

Cryptography

Network Protection Systems

Filters