Sec..Outstanding Grades, Exams of Nursing

Sec..Outstanding Grades Sec..Outstanding Grades

Typology: Exams

2025/2026

Available from 05/07/2026

ethan-charles-1
ethan-charles-1 🇬🇧

1.4K documents

1 / 489

Toggle sidebar

This page cannot be seen from the preview

Don't miss anything!

bg1
Sec+ 401
Questions from
Premier
Institutions,
Exams of Nursing
Assured A+|
Outstanding
Grades
A targeted email attack sent to Sara, the company's Chief
Executive Officer (CEO), is known as which of the
pf3
pf4
pf5
pf8
pf9
pfa
pfd
pfe
pff
pf12
pf13
pf14
pf15
pf16
pf17
pf18
pf19
pf1a
pf1b
pf1c
pf1d
pf1e
pf1f
pf20
pf21
pf22
pf23
pf24
pf25
pf26
pf27
pf28
pf29
pf2a
pf2b
pf2c
pf2d
pf2e
pf2f
pf30
pf31
pf32
pf33
pf34
pf35
pf36
pf37
pf38
pf39
pf3a
pf3b
pf3c
pf3d
pf3e
pf3f
pf40
pf41
pf42
pf43
pf44
pf45
pf46
pf47
pf48
pf49
pf4a
pf4b
pf4c
pf4d
pf4e
pf4f
pf50
pf51
pf52
pf53
pf54
pf55
pf56
pf57
pf58
pf59
pf5a
pf5b
pf5c
pf5d
pf5e
pf5f
pf60
pf61
pf62
pf63
pf64

Partial preview of the text

Download Sec..Outstanding Grades and more Exams Nursing in PDF only on Docsity!

 Sec+ 401

Questions from

Premier

Institutions,

Exams of Nursing

Assured A+|

Outstanding

Grades

A targeted email attack sent to Sara, the company's Chief Executive Officer (CEO), is known as which of the

following? A. Whaling B. Bluesnarfing C. Vishing

D. Dumpster diving - ANSWERS -A

In regards to secure coding practices, why is input validation important? A. It mitigates buffer overflow attacks. B. It makes the code more readable. C. It provides an application configuration baseline.

D. It meets gray box testing standards. - ANSWERS -A

Which of the following steps should follow the deployment of a patch? A. Antivirus and anti-malware deployment B. Audit and verification C. Fuzzing and exploitation

D. Error and exception handling - ANSWERS -B

Which of the following would be used when a higher level of security is desired for encryption key storage?

A security administrator is observing congestion on the firewall interfaces and a high number of half open incoming connections from different external IP addresses. Which of the following attack types is underway? A. Cross-site scripting B. SPIM C. Client-side

D. DDoS - ANSWERS -D

Which of the following application security testing techniques is implemented when an automated system generates random input data? A. Fuzzing B. XSRF C. Hardening

D. Input validation - ANSWERS -A

Which of the following BEST describes a protective countermeasure for SQL injection? A. Eliminating cross-site scripting vulnerabilities B. Installing an IDS to monitor network traffic

C. Validating user input in web applications D. Placing a firewall between the Internet and database servers -

ANSWERS -C

A certificate authority takes which of the following actions in PKI? A. Signs and verifies all infrastructure messages B. Issues and signs all private keys C. Publishes key escrow lists to CRLs

D. Issues and signs all root certificates - ANSWERS -D

Use of a smart card to authenticate remote servers remains MOST susceptible to which of the following attacks? A. Malicious code on the local system B. Shoulder surfing C. Brute force certificate cracking

D. Distributed dictionary attacks - ANSWERS -A

A security administrator needs to update the OS on all the switches in the company. Which of the following MUST be done before any actual switch configuration is performed?

likely be implemented within the company? A. Account lockout policy B. Account password enforcement C. Password complexity enabled

D. Separation of duties - ANSWERS -D

An employee is granted access to only areas of a network folder needed to perform their job. Which of the following describes this form of access control? A. Separation of duties B. Time of day restrictions C. Implicit deny

D. Least privilege - ANSWERS -D

Sara, a user, downloads a keygen to install pirated software. After running the keygen, system performance is extremely slow and numerous antivirus alerts are displayed. Which of the following BEST describes this type of malware? A. Logic bomb B. Worm C. Trojan

D. Adware - ANSWERS -C

Which of the following may significantly reduce data loss if multiple drives fail at the same time? A. Virtualization B. RAID C. Load balancing

D. Server clustering - ANSWERS -B

To help prevent unauthorized access to PCs, a security administrator implements screen savers that lock the PC after five minutes of inactivity. Which of the following controls is being described in this situation? A. Management B. Administrative C. Technical

D. Operational - ANSWERS -C

Pete, a network administrator, is capturing packets on the network and notices that a large amount of the traffic on the LAN is SIP and RTP protocols. Which of the following should he do to segment that traffic from the other traffic?

of the network. Which of the following would allow Jane to perform this kind of testing? A. Local isolated environment B. Networked development environment C. Infrastructure as a Service

D. Software as a Service - ANSWERS -A

Which of the following transportation encryption protocols should be used to ensure maximum security between a web browser and a web server? A. SSLv B. SSHv C. RSA

D. TLS - ANSWERS -D

Developers currently have access to update production servers without going through an approval process. Which of the following strategies would BEST mitigate this risk? A. Incident management B. Clean desk policy C. Routine audits

D. Change management - ANSWERS -D

To reduce an organization's risk exposure by verifying compliance with company policy, which of the following should be performed periodically? A. Qualitative analysis B. Quantitative analysis C. Routine audits

D. Incident management - ANSWERS -C

Which of the following is a difference between TFTP and FTP? A. TFTP is slower than FTP. B. TFTP is more secure than FTP. C. TFTP utilizes TCP and FTP uses UDP.

D. TFTP utilizes UDP and FTP uses TCP. - ANSWERS -D

A system administrator decides to use SNMPv3 on the network router in AuthPriv mode. Which of the following algorithm combinations would be valid? A. AES-RC B. 3DES-MD C. RSA-DSA

A. Anti-spam B. Anti-virus C. Host-based firewalls

D. Patch management - ANSWERS -A

Which of the following would MOST likely ensure that swap space on a hard disk is encrypted? A. Database encryption B. Full disk encryption C. Folder and file encryption

D. Removable media encryption - ANSWERS -B

Which of the following access controls enforces permissions based on data labeling at specific levels? A. Mandatory access control B. Separation of duties access control C. Discretionary access control

D. Role based access control - ANSWERS -A

A username provides which of the following? A. Biometrics

B. Identification C. Authorization

D. Authentication - ANSWERS -B

Use of group accounts should be minimized to ensure which of the following? A. Password security B. Regular auditing C. Baseline management

D. Individual accountability - ANSWERS -D

Privilege creep among long-term employees can be mitigated by which of the following procedures? A. User permission reviews B. Mandatory vacations C. Separation of duties

D. Job function rotation - ANSWERS -A

In which of the following scenarios is PKI LEAST hardened? A. The CRL is posted to a publicly accessible location.

Which of the following would be used to identify the security posture of a network without actually exploiting any weaknesses? A. Penetration test B. Code review C. Vulnerability scan

D. Brute Force scan - ANSWERS -C

A security administrator has just finished creating a hot site for the company. This implementation relates to which of the following concepts? A. Confidentiality B. Availability C. Succession planning

D. Integrity - ANSWERS -B

In the initial stages of an incident response, Matt, the security administrator, was provided the hard drives in question from the incident manager. Which of the following incident response procedures would he need to perform in order to begin the analysis? (Select TWO) A. Take hashes

B. Begin the chain of custody paperwork C. Take screen shots D. Capture the system image

E. Decompile suspicious files - ANSWERS -AD

Which of the following is used to certify intermediate authorities in a large PKI deployment? A. Root CA B. Recovery agent C. Root user

D. Key escrow - ANSWERS -A

Which of the following components MUST be trusted by all parties in PKI? A. Key escrow B. CA C. Private key

D. Recovery key - ANSWERS -B

Which of the following should Matt, a security administrator, include when encrypting smartphones? (Select TWO) A. Steganography images

IF VARIABLE (CONTAINS NUMBERS = TRUE) THEN EXIT

A. Buffer overflow prevention B. Input validation C. CSRF prevention

D. Cross-site scripting prevention - ANSWERS -B

Why is it important for a penetration tester to have established an agreement with management as to which systems and processes are allowed to be tested? A. Penetration test results are posted publicly, and some systems tested may contain corporate secrets. B. Penetration testers always need to have a comprehensive list of servers, operating systems, IP subnets, and department personnel prior to ensure a complete test. C. Having an agreement allows the penetration tester to look for other systems out of scope and test them for threats against the in-scope systems. D. Some exploits when tested can crash or corrupt a system

causing downtime or data loss. - ANSWERS -D

A system administrator is using a packet sniffer to troubleshoot remote authentication. The administrator detects a device trying to communicate to TCP port 49. Which of the following authentication methods is MOST likely being attempted? A. RADIUS B. TACACS+ C. Kerberos

D. LDAP - ANSWERS -B

An administrator wants to minimize the amount of time needed to perform backups during the week. It is also acceptable to the administrator for restoration to take an extended time frame. Which of the following strategies would the administrator MOST likely implement? A. Full backups on the weekend and incremental during the week. B. Full backups on the weekend and full backups every day. C. Incremental backups on the weekend and differential backups every day. D. Differential backups on the weekend and full backups every

day. - ANSWERS -A