





























Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
PCES: Python Institute Certified Entry-Level Security Specialist with Python Python Institute Certified Entry-Level Security Specialist with Python Latest Version: 6.0 100 Questions with Correct Answers & Explanations | Graded A+ Study Guide
Typology: Exams
1 / 37
This page cannot be seen from the preview
Don't miss anything!






























To ensure file access events are logged, where must audit logging be enabled? A. At the storage domain level
B. On each Cohesity View C. At the protection policy level D. At the cluster hardware level
Why might an organization choose archival rather than replication for file services disaster recovery? A. Archival supports long-term retention at lower cost B. Archival provides faster failover C. Replication is unsupported for file data D. Archival eliminates recovery testing
Before antivirus protection can be enforced on a Cohesity View, which step must be completed? A. Enable WORM compliance B. Assign a protection policy C. Create a NAS tiering job D. Configure an antivirus server
What risk is most critical to mitigate during file services failover? A. UI pe rfo rm an ce B. Re du ce d au dit log s C. Increased quotas D. Client access disruption
A newly created Cohesity View has no quota explicitly defined. What is the default behavior regarding storage consumption? A. Writes are blocked after 1 TB B. The View uses available storage without limits C. The View inherits a system-wide quota D. Writes are read-only by default
Which statement best summarizes security and compliance for Cohesity SmartFiles? A. Multiple layered controls protect file data and access B. Security is automatic and requires no configuration C. Compliance is achieved only through backups D. Security applies only to SMB
During a site outage, administrators want users to continue accessing file data from a secondary location. Which Cohesity File Services capability supports this scenario? A. View quotas B. File Services failover options C. Snapshot scheduling D. Antivirus scanning
11. Which module handles SSL/TLS in Python? A. ssl B. socket C. http D. secure Answer: A
Answer: C More Information: eval() executes arbitrary code, making it highly dangerous.
15. What is salting in password hashing? A. Encrypting twice B. Adding random data before hashing C. Deleting password D. Compressing password Answer: B More Information: Salting prevents rainbow table attacks. 16. Which algorithm is stronger? A. MD B. SHA- 1 C. SHA- 256 D. CRC Answer: C More Information: SHA-256 is more secure; MD5 and SHA-1 are deprecated for security use. 17. What does base64 encoding provide? A. Encryption B. Compression
C. Encoding D. Hashing Answer: C More Information: Base64 is encoding, not encryption—it can be reversed.
18. Which library helps securely store passwords? A. bcrypt B. time C. random D. math Answer: A More Information: bcrypt implements adaptive hashing for password storage. 19. What is two-factor authentication? A. Two passwords B. Password + second verification C. Two usernames D. No password Answer: B More Information: 2FA combines something you know with something you have or are. 20. Which port is used for HTTPS?
More Information: RSA uses public and private keys.
23. What is phishing? A. Malware B. Social engineering attack C. Firewall D. Encryption Answer: B More Information: Phishing tricks users into revealing credentials. 24. Which Python module creates sockets? A. ssl B. socket C. net D. tcp Answer: B More Information: socket enables network communication in Python. 25. What is a firewall used for? A. Store passwords B. Filter traffic C. Encrypt files D. Compress data
Answer: B More Information: Firewalls monitor and control incoming/outgoing traffic.
26. Which attack exploits database queries? A. XSS B. SQL Injection C. DDoS D. MITM Answer: B More Information: SQL injection manipulates queries to access unauthorized data. 27. What is symmetric encryption? A. One key B. Two keys C. No keys D. Three keys Answer: A More Information: Symmetric encryption uses a single shared key. 28. What does TLS provide? A. Compression B. Encryption
31. What is code injection? A. Running malicious code B. Updating code C. Debugging D. Logging Answer: A More Information: Code injection inserts malicious commands into execution. 32. Why disable debug mode in production? A. Save RAM B. Prevent information leakage C. Improve graphics D. Encrypt faster Answer: B More Information: Debug mode may reveal sensitive system details. 33. Which file should NOT be exposed publicly? A. README B. .env C. index.html D. style.css Answer: B More Information: .env files store secrets like API keys. 34. What does logging help with?
A. Styling B. Monitoring & auditing C. Encryption D. Hashing Answer: B More Information: Logs help detect suspicious activity.
35. What is patch management? A. Deleting logs B. Updating software C. Encrypting files D. Rebooting server Answer: B More Information: Regular updates fix vulnerabilities. 36. What is brute force? A. Guessing passwords repeatedly B. Encrypting twice C. Hashing D. Phishing Answer: A More Information: Brute force tries many combinations until correct. 37. What does MFA stand for? A. Multiple File Access B. Multi-Factor Authentication
Answer: B More Information: Scans identify system weaknesses. ✅ QUESTIONS 41–50: Practical Security Concepts
41. What does CIA stand for? A. Central Info Access B. Confidentiality, Integrity, Availability C. Cyber Intelligence Authority D. Certified Internet Access Answer: B More Information: Core security model. 42. What is MITM attack? A. Man-in-the-Middle B. Malware-in-the-Memory C. Man-in-the-Mail D. Main Internet Threat Answer: A More Information: Attacker intercepts communication. 43. Which tool checks Python dependencies for vulnerabilities? A. pip-audit B. print() C. math D. os
Answer: A More Information: pip-audit scans for known vulnerabilities.
44. What is XSS? A. Cross-Site Scripting B. Extra Secure Server C. XML Secure System D. Cross Server Script Answer: A More Information: XSS injects scripts into web pages. 45. What is data encryption at rest? A. Encrypting stored data B. Encrypting emails C. Hashing passwords D. Encoding data Answer: A More Information: Protects stored files/databases. 46. Which module helps manage environment variables? A. os B. math C. csv D. time Answer: A More Information: os.environ accesses environment variables.
C. bcrypt with salt D. Base Answer: C More Information: bcrypt with salt protects against rainbow tables and brute force.
51. What is the main difference between hashing and encryption? A. Hashing is reversible B. Encryption is one-way C. Hashing is one-way; encryption is reversible D. They are identical Answer: C More Information: Hashing is irreversible, while encryption can be reversed with the correct key. 52. Which algorithm is NOT recommended for password storage? A. bcrypt B. Argon C. SHA-256 with salt D. MD Answer: D More Information: MD5 is cryptographically broken and vulnerable to collision attacks. 53. What is a rainbow table attack? A. Network flooding B. Precomputed hash attack
C. Phishing attack D. MITM attack Answer: B More Information: Rainbow tables store precomputed hashes to reverse weak hashed passwords.
54. What is the purpose of a nonce in cryptography? A. Store password B. Prevent replay attacks C. Compress data D. Hash data Answer: B More Information: A nonce (number used once) ensures messages cannot be reused maliciously. 55. Which Python module generates secure tokens for authentication? A. random B. secrets C. hashlib D. uuid Answer: B More Information: The secrets module is designed for cryptographically strong random numbers.