Question 1

Where are MAC addresses stored for future reference?

Accepted Answer

A) MAC cache 
B) Ethernet cache 
C) ARP cache 
D) NIC 
A) MAC cache 
B) Ethernet cache 
C) ARP cache 
D) NIC

Question 2

If an attacker purchases and uses a URL that is similar in spelling and looks like a well-known web site in order for the attacker to gain Web traffic to generate income,what type of attack are they using?

Accepted Answer

A) spoofing 
B) URL hijacking 
C) Web squatting 
D) typo hijacking 
A) spoofing 
B) URL hijacking 
C) Web squatting 
D) typo hijacking

Question 3

Which type of attack broadcasts a network request to multiple computers but changes the address from which the request came to the victim's computer?

Accepted Answer

A) IP spoofing 
B) denial of service 
C) DNS Poisoning 
D) smurf attack 
A) IP spoofing 
B) denial of service 
C) DNS Poisoning 
D) smurf attack

Question 4

What specific ways can a session token be transmitted? (Choose all that apply. )

Accepted Answer

A) In the URL. 
B) In the trailer of a frame. 
C) In the header of a packet. 
D) In the header of the HTTP requisition. 
A) In the URL. 
B) In the trailer of a frame. 
C) In the header of a packet. 
D) In the header of the HTTP requisition.

Question 5

In an integer overflow attack,an attacker changes the value of a variable to something outside the range that the programmer had intended by using an integer overflow.

Accepted Answer

A) True 
 B)False

Question 6

What technology expands the normal capabilities of a web browser for a specific webpage?

Accepted Answer

A) extensions 
B) add-ons 
C) plug-ins 
D) Java applets 
A) extensions 
B) add-ons 
C) plug-ins 
D) Java applets

Question 7

What are the two types of cross-site attacks? (Choose all that apply. )

Accepted Answer

A) cross-site input attacks 
B) cross-site scripting attacks 
C) cross-site request forgery attacks 
D) cross-site flood attacks 
A) cross-site input attacks 
B) cross-site scripting attacks 
C) cross-site request forgery attacks 
D) cross-site flood attacks

Question 8

What type of web server application attacks introduce new input to exploit a vulnerability?

Accepted Answer

A) language attacks 
B) cross-site request attacks 
C) hijacking attacks 
D) injection attacks 
A) language attacks 
B) cross-site request attacks 
C) hijacking attacks 
D) injection attacks

Question 9

The malicious content of an XSS URL is confined to material posted on a website

Accepted Answer

A) True 
 B)False

Question 10

If a MAC address is permanently "burned" into a network interface card,how can an attacker change the MAC address to perform an ARP poisoning attack?

Accepted Answer

A MAC address is permanently "burned" in

Where are MAC addresses stored for future reference?

If an attacker purchases and uses a URL that is similar in spelling and looks like a well-known web site in order for the attacker to gain Web traffic to generate income,what type of attack are they using?

Which type of attack broadcasts a network request to multiple computers but changes the address from which the request came to the victim's computer?

What specific ways can a session token be transmitted? (Choose all that apply. )

In an integer overflow attack,an attacker changes the value of a variable to something outside the range that the programmer had intended by using an integer overflow.

What technology expands the normal capabilities of a web browser for a specific webpage?

What are the two types of cross-site attacks? (Choose all that apply. )

What type of web server application attacks introduce new input to exploit a vulnerability?

The malicious content of an XSS URL is confined to material posted on a website

If a MAC address is permanently "burned" into a network interface card,how can an attacker change the MAC address to perform an ARP poisoning attack?

Introduction to Security

Malware and Social Engineering Attacks

Basic Cryptography

Advanced Cryptography and PKI

Network Security Devices, Design, and Technology

Administering a Secure Network

Wireless Network Security

Client and Application Security

Mobile and Embedded Device Security

Authentication and Account Management

Access Management

Vulnerability Assessment and Data Security

Business Continuity

Risk Mitigation

Filters

Exam 5: Networking and Server Attacks

Where are MAC addresses stored for future reference?

If an attacker purchases and uses a URL that is similar in spelling and looks like a well-known web site in order for the attacker to gain Web traffic to generate income,what type of attack are they using?

Which type of attack broadcasts a network request to multiple computers but changes the address from which the request came to the victim's computer?

What specific ways can a session token be transmitted? (Choose all that apply. )

In an integer overflow attack,an attacker changes the value of a variable to something outside the range that the programmer had intended by using an integer overflow.

What technology expands the normal capabilities of a web browser for a specific webpage?

What are the two types of cross-site attacks? (Choose all that apply. )

What type of web server application attacks introduce new input to exploit a vulnerability?

The malicious content of an XSS URL is confined to material posted on a website

If a MAC address is permanently "burned" into a network interface card,how can an attacker change the MAC address to perform an ARP poisoning attack?

Introduction to Security

Malware and Social Engineering Attacks

Basic Cryptography

Advanced Cryptography and PKI

Network Security Devices, Design, and Technology

Administering a Secure Network

Wireless Network Security

Client and Application Security

Mobile and Embedded Device Security

Authentication and Account Management

Access Management

Vulnerability Assessment and Data Security

Business Continuity

Risk Mitigation

Filters