An attacker, using a rogue wireless AP, performed an MITM attack and injected an HTML code to embed a malicious applet in all HTTP connections. When users accessed any page, the applet ran and exploited many machines.
Which one of the following tools the hacker probably used to inject HTML code?
Answer : B
Which mode of IPSec should you use to assure security and confidentiality of data within the same LAN?
Answer : A
Hackers often raise the trust level of a phishing message by modeling the email to look similar to the internal email used by the target company. This includes using logos, formatting, and names of the target company. The phishing message will often use the name of the company CEO, President, or Managers. The time a hacker spends performing research to locate this information about a company is known as?
Answer : C
Which of the following viruses tries to hide from anti-virus programs by actively altering and corrupting the chosen service call interruptions when they are being run?
Answer : B
The ג€Gray-box testingג€ methodology enforces what kind of restriction?
Answer : B
When analyzing the IDS logs, the system administrator noticed an alert was logged when the external router was accessed from the administratorג€™s Computer to update the router configuration. What type of an alert is this?
Answer : D
A large company intends to use Blackberry for corporate mobile phones and a security analyst is assigned to evaluate the possible threats. The analyst will use the Blackjacking attack method to demonstrate how an attacker could circumvent perimeter defenses and gain access to the Prometric Online Testing ג€" Reports https://ibt1.prometric.com/users/custom/report_queue/rq_str... corporate network. What tool should the analyst use to perform a Blackjacking attack?
Answer : B
When you are getting information about a web server, it is very important to know the HTTP Methods (GET, POST, HEAD, PUT, DELETE, TRACE) that are available because there are two critical methods (PUT and DELETE). PUT can upload a file to the server and DELETE can delete a file from the server. You can detect all these methods (GET, POST, HEAD, PUT, DELETE, TRACE) using NMAP script engine. What Nmap script will help you with this task?
Answer : A
Todd has been asked by the security officer to purchase a counter-based authentication system. Which of the following best describes this type of system?
Answer : C
Which of the following is a low-tech way of gaining unauthorized access to systems?
Answer : A
Which system consists of a publicly available set of databases that contain domain name registration contact information?
Answer : A
Why is a penetration test considered to be more thorough than vulnerability scan?
Answer : B
Bob received this text message on his mobile phone:
Answer : A
Answer : D