Crowdly
Add to Chrome
[24-25] Security Audit and Ethical Hacking - Part 1 [2C]
Looking for [24-25] Security Audit and Ethical Hacking - Part 1 [2C] test answers and solutions? Browse our comprehensive collection of verified answers for [24-25] Security Audit and Ethical Hacking - Part 1 [2C] at moodle.esme.fr.
Get instant access to accurate answers and detailed explanations for your course questions. Our community-driven platform helps students succeed!
An organization wants to save on time and money and decides to go with an automated approach to pentesting. Which of the following tools would work for this? (Choose all that apply.)
0%
0%
0%
0%
View this question
Which of the following is the best choice for providing secure remote access, minimizing MITM opportunities?
0%
0%
0%
0%
0%
View this question
Which of the following best describes an API that allows application components to communicate with other components?
0%
0%
0%
0%
View this question
_______________ refers to keeping information confidential that is personally identifiable or that might cause harm, embarrassment, or disgrace to someone if revealed.
100%
0%
0%
0%
View this question
Which of the following best describes session key creation in SSL?
57%
43%
0%
0%
View this question
Joseph was the Web site administrator for the Mason Insurance in New York, who's main Web site was located at www.masonins.com. Joseph uses his laptop computer regularly to administer the Web site. One night, Joseph received an urgent phone call from his friend, Smith. Accordingto Smith, the main Mason Insurance web site had been vandalized! All of its normal content wasremoved and replaced with an attacker's message ''Hacker Message: You are dead! Freaks!'' From his office, which was directly connected to Mason Insurance's internal network, Joseph surfed to the Web site using his laptop. In his browser, the Web site looked completely intact. No changes were apparent. Joseph called a friend of his at his home to help troubleshoot the problem. The Web site appeared defaced when his friend visited using his DSL connection. So, while Smith and his friend could see the defaced page, Joseph saw the intact Mason Insurance web site. To help make sense of this problem, Joseph decided to access the Web site using his dial-up ISP. He disconnected his laptop from the corporate internal network and used his modem to dial up the same ISP used by Smith. After his modem connected, he quickly typed www.masonins.com in his browser to reveal the following web page:H@cker Mess@ge:Y0u @re De@d! Fre@ks!After seeing the defaced Web site, he disconnected his dial-up line, reconnected to the internal network, and used Secure Shell (SSH) to log in directly to the Web server. He ran Tripwire against the entire Web site, and determined that every system file and all the Web content on the server were intact. How did the attacker accomplish this hack?
0%
0%
0%
0%
View this question
Which of the following best describes a hybrid password-cracking attack?
0%
0%
0%
0%
View this question
Which footprinting tool or technique can be used to find names and addresses of technical points of contact?
0%
0%
0%
100%
View this question
A pentester is separated from the internal network by a pesky firewall; however, she determines port 80 is open from outside to inside at the firewall to a specific group of machines. Luckily, through other methods her team had already penetrated and set up a few things on one of these machines. Which of the following is her best choice to send commands and data to the internal system through the firewall?
0%
100%
0%
0%
View this question
A security professional gains access to a SAM file that is protected with SYSKEY and wants to use a program named Syscracker to decrypt the SAM file and run the hashes through a password cracker. How many bits does SYSKEY use for encryption?
83%
17%
0%
0%
View this question