Which type of malware consists of a set of software tools used by an attacker to hide the actions or presence of other types of malicious software, such as Trojans, viruses or worms?

From the command prompt, the following command is issued: telnet  www.myserver.com  80. What process is being implemented for the purpose of information gathering?

The IEEE 802.15.1-2005 standard is based on which version of the Bluetooth specifications?

When using AES-CCMP encryption, the AES-256 bit key performs how many rounds?

What type of malware is heavily dependent on  a user in order to spread?

A ___________ attack is similar to a passive man-in-the-middle attack.

An administrator is running a port scan. He wants to ensure that no processes are listening on port 23. What state should the port be in?

Security is the goal to be free from danger as well as the process that achieves that freedom.

Today's software attack tools do not require any sophisticated knowledge on the part of the attacker.

Because a rootkit substitutes its own files and routines in the operating system, it can be difficult to detect the presence of a rootkit.

As network administrator, you have been tasked with gaining a better understanding of who the attackers might be, why they might attack and what type of attacks might occur. Which of the following processes will you implement?

A series of instructions that can be grouped together as a single command and are often used to automate a complex set of tasks or a repeated series of tasks are known as:

A team of consultants has just completed the process of implementing a  VPN for your company. You have been assigned the task of evaluating the VPN implementation for proper setup and security. Your task is an example of:

What security goal do the following have in common: hashing, digital signatures, certificates and non-repudiation tools?

Which type of system security malware allows for access to a computer, program or service without authorization?

Which of the following encryption protocols is used in the WPA2 standard?

A worm inserts malicious code into a program or data file, thereby spreading similarly to a virus.

APs use antennas that radiate a signal in all directions.

According to the US Bureau of Labor Statistics, what percentage of growth is the available job outlook for information security analysts supposed to reach by the end of the decade?

RADMIN is an example of port scanning software.

Vulnerability scans are usually performed from outside the security perimeter.

What type of attack takes advantage of web applications that accept user input without validating it and then present it back to the user?

Which of the following protocols creates an encrypted channel between the client and the authentication server in addition to using Microsoft Windows logins and passwords?

What is the end result of a penetration test?

An attack in which the attacker attempts to impersonate the user by using his or her session token is known as:

An access point that is unauthorized and allows an attacker to bypass network security configurations is considered to be what type of access point?

What is the maximum number of characters that can exit within an SSID?

Which of the following SQL injection statements can be used to find specific users?

Which of the following uses a standard web browser to provide information and gives the wireless user the opportunity to agree to a policy or present valid login credentials?

A security team has been hired to conduct a black box penetration test; thus, the tester has prior knowledge of the network infrastructure that is being tested. 

Successful attacks on computers today consist of a single element, malicious software programs that are created to infiltrate computers with the intent to do harm.

A healthy security posture results from a sound and workable strategy toward managing risks.

Of the three types of mutating malware, which type changes its internal code to one of a set number of predefined mutations whenever it is executed?

A virus that infects an executable program file is known as:

Which type of attack is targeted against a smaller group of specific individuals such as the major executives working for a manufacturing company?

EAP uses which of the following types of packets? (Choose three.)

Because of the important role it plays, DNS can be the focus of attacks.

XSS attacks occur when an attacker takes advantage of web applications that accept user input without validating it and then present it back to the user.

An evil twin is an AP set up by an attacker to mimic an authorized AP with the intent to redirect client devices.

If TCP port 53 is open, an attacker can assume that DNS is being used.

Which of the following SQL injection statements can be used to discover the name of the table?

Which SQL statement represents a SQL injection attempt to determine the names of different fields in a database?

Which of the following is responsible for the issuing of EAP request packets?

Which of the three protections ensures that only authorized parties can view information?

Select the EAP protocol supported by WPA2 Enterprise that securely tunnels any credential form for authentication using TLS.

Because the XSS is a widely known attack, the number of Web sites that are vulnerable is very small.

Because PEAP can be vulnerable to specific types of attacks, Cisco recommends that users migrate to a more secure EAP than PEAP.

Bluetooth devices are not backwardly compatible with previous versions.