In which type of attack are passwords never cracked?
A. Cryptography attacks
B. Brute-force attacks
C. Replay attacks
D. John the Ripper attacks
C
If the password is 7 characters or less, then the second half of the LM hash is always:
A. 0xAAD3B435B51404EE
B. 0xAAD3B435B51404AA
C. 0x...
certified ethical hacker exam with 100% correct answers already graded A+
In which type of attack are passwords never cracked? A. Cryptography attacks B. Brute-force attacks C. Replay attacks D. John the Ripper attacks - answer C
If the password is 7 characters or less, then the second half of the LM hash is always:
A. 0xAAD3B435B51404EE
B. 0xAAD3B435B51404AA
C. 0xAAD3B435B51404BB
D. 0xAAD3B435B51404CC - answer A
. What defensive measures will you take to protect your network from password brute-force
attacks? (Choose all that apply.)
A. Never leave a default password.
B. Never use a password that can be found in a dictionary.
C. Never use a password related to the hostname, domain name, or anything else that can
be found with Whois.
D. Never use a password related to your hobbies, pets, relatives, or date of birth.
E. Use a word that has more than 21 characters from a dictionary as the password. - answer A,B,C,D
Which of the following is the act intended to prevent spam emails?
A. 1990 Computer Misuse Act
B. Spam Prevention Act
C. US-Spam 1030 Act D. CANSPAM Act - answer D
5. _____ is a Cisco IOS mechanism that examines packets on Layers 4 to 7.
A. Network-Based Application Recognition (NBAR)
B. Denial-of-Service Filter (DOSF)
C. Rule Filter Application Protocol (RFAP)
D. Signature-Based Access List (SBAL) - answer A
6. What filter in Ethereal will you use to view Hotmail messages?
A. (http contains "e-mail") && (http contains "hotmail")
B. (http contains "hotmail") && (http contains "Reply-To")
C. (http = "login.passport.com") && (http contains "SMTP")
D. (http = "login.passport.com") && (http contains "POP3") - answer B
7. Who are the primary victims of SMURF attacks on the Internet?
A. IRC servers
B. IDS devices
C. Mail servers
D. SPAM filters - answer A
8. What type of attacks target DNS servers directly?
A. DNS forward lookup attacks
B. DNS cache poisoning attacks
C. DNS reverse connection attacks
D. DNS reflector and amplification attack - answer D
9. TCP/IP session hijacking is carried out in which OSI layer?
A. Transport layer
B. Datalink layer C. Network layer
D. Physical layer - answer A
10. What is the term used in serving different types of web pages based on the user's IP
address?
A. Mirroring website
B. Website filtering
C. IP access blockade
D. Website cloaking - answer D
11. True or False: Data is sent over the network as cleartext (unencrypted) when Basic Authentication is configured on web servers. A. True B. False - answer A
12. What is the countermeasure against XSS scripting?
A. Create an IP access list and restrict connections based on port number.
B. Replace < and > characters with < and > using server scripts.
C. Disable JavaScript in Internet Explorer and Firefox browsers.
D. Connect to the server using HTTPS protocol instead of HTTP. - answer B
13. How would you prevent a user from connecting to the corporate network via their home
computer and attempting to use a VPN to gain access to the corporate LAN?
A. Enforce Machine Authentication and disable VPN access to all your employee accounts
from any machine other than corporate-issued PCs.
B. Allow VPN access but replace the standard authentication with biometric authentication.
C. Replace the VPN access with dial-up modem access to the company's network.
D. Enable 25-character complex password policy for employees to access the VPN network. - answer A
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller GUARANTEEDSUCCESS. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $14.49. You're not tied to anything after your purchase.
