































Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
WGU EDUCATIONAL ASSESSMENT PRACTICE QUESTION
Typology: Exams
1 / 39
This page cannot be seen from the preview
Don't miss anything!
































An attacker repeatedly enters the wrong password for the managers account and has now locked the account. Which category of the CIA triad was compromised? Integrity Integration Confidentiality Availability - CORRECT ANSWES -- Availability An unauthorized user was able to change some of the data in an accounting department's excel spreadsheet. Which category of the CIA triad was compromised? Confidentiality Authentication Availability Integrity - CORRECT ANSWES -- Integrity A _______ attack send TCP/IP traffic to each and every port to learn which services are running. Spoofing Port scanning Ping flood SQL Injection - CORRECT ANSWES -- Port Scanning An attacker was able to perform a denial of service attack on the email server and now users are unable to retrieve their emails. Which category of the CIA triad was compromised? Confidentiality Availability Integrity
Authorization - CORRECT ANSWES -- Availability A third world country has solicited the services of several hackers to perform an attack on the U.S. treasury department? Which time of attack would this be classified as? Nation State Espionage Industrial Espionage International Espionage World Espionage - CORRECT ANSWES -- Nation State Espionage When an attacker is inserting text that is too large to fit within a region of memory, what type of attack are they trying to perform? SQL injection Buffer overflow Sniffing Cross-site scripting - CORRECT ANSWES -- Buffer Overflow When a company allows its users to access company resources through their personal cell phones, what vulnerability is represented? Weak password BYOD/mobile Industry threat Misconfigured firewall - CORRECT ANSWES -- BYOD/Mobile An administrator takes a new firewall out the box and plugs it into the network without making any changes. What type vulnerability did this create? Default password Industry threat Weak password BYOD - CORRECT ANSWES -- Default password A user is setting up his new work account and sets his password to password01 so he can easily remember it. What type of vulnerability did his password choice create? Default password Brute-force Zero-day Weak password - CORRECT ANSWES -- Weak password A malicious user was able to perform a password brute force attack on a human resource email account and is now reading through all their emails. Which category of the CIA triad was compromised?
Do you do what you say you will do? Are you credentialed for the level of access you need? Did you arrive at the time you said you did? Are you who you say you are? - CORRECT ANSWES -- Are you who you say you are? ARP Poisoning allows an attacker to: Eavesdrop on the traffic sent through the Hub Eavesdrop on the traffic sent through the Switch Eavesdrop on the traffic sent through the Router Eavesdrop on the traffic sent through the Firewall - CORRECT ANSWES -- Eavesdrop on the traffic sent through the Switch What does AAA stand for? Authorization, Access and Accounting Authentication, Access and Autoscaling Authentication, Authorization and Accounting Access, Authorization and Authentication - CORRECT ANSWES -- Authentication, Authorization and Accounting What is the best choice that describes the difference between IDS and IPS? a. IPS can only detect intrusions and IDS can detect and stop malicious network attacks. b. IDS can detect intrusions and IDS can stop malicious network attacks. c. IDS is only used for webservers; IPS can be used in all environments d. IDS can detect intrusions; IPS can stop malicious network attacks. - CORRECT ANSWES -- d. IDS can detect intrusions; IPS can stop malicious network attacks. What are two types of encryption? a. Symmetric encryption, the same key encrypts and decrypts data; asymmetric encryption different keys encrypt and decrypt data b. Synchronous encryption, the same key encrypts and decrypts data; asynchronous encryption different keys encrypt and decrypt data c. Symmetric encryption, a different key encrypts and decrypts data; asymmetric encryption, the same key encrypts and decrypts data d. Synchronous encryption, a different key encrypts and decrypts data; asynchronous encryption the same key encrypts and decrypts data - CORRECT ANSWES -- a. Symmetric encryption, the same key encrypts and decrypts data; asymmetric encryption different keys encrypt and decrypt data What is packet filtering? How does it work? Choose the 2 correct answers.
A limit is placed on the packets that can enter the network. A limit is placed on the speed that packets can enter the network. Filters using Layer 3 and 4 protocols Filters using Layer 2 and 3 protocols - CORRECT ANSWES -- A limit is placed on the packets that can enter the network. Filters using Layer 3 and 4 protocols If someone poses as the IT network admin, walks into a building and asks for the receptionist password to provide an update to their computer, what type of attack is this most likely to be? Phishing Social Engineering SQL Injection Man-in-the-Middle - CORRECT ANSWES -- Social Engineering MFA protects identities by: Tracking the place where a login attempt occurs Monitoring the hours when a login takes place Limiting multiple attempts using a username and password Using two methods of authentication Using only one login to access multiple resources - CORRECT ANSWES -- Using two methods of authentication A stateful firewall uses Stateful Packet Inspection to protect the network. How does this type of firewall operate? a. A stateful firewall uses a list to allow connections b. A stateful firewall makes requests on behalf of other systems on a Network c. A stateful firewall that compares all inbound traffic to ensure there is an outbound request. d. A stateful firewall that compares IP addresses to a block list to deny connections - CORRECT ANSWES -- c. A stateful firewall that compares all inbound traffic to ensure there is an outbound request. What phrase represents Authorization the best? Are you who you say you are? Did you do what you said you were going to do? What can you do based on who you are? Which OSI layer is related to the function of the IP protocol suite? a. Transport
a. Jack b. Hub c. Patch Panel d. Router - CORRECT ANSWES -- Patch Panel Which network device is used to connect two or more network segments by performing OSI layer 3 functions like packet-forwarding? a. Router b. Repeater c. Wire d. Switch - CORRECT ANSWES -- Router Which network device is used to convert between digital information from a LAN and analog signals for transmission over a standard telephone wire? a. Repeater b. Modem c. Signal Generator d. Bit Stretcher - CORRECT ANSWES -- Modem Which device could be used to send commands to the mainframe for remote execution in early mainframe installations? a. Distributed Screens b. Dumb Terminals c. Execution Displays d. Command Receivers - CORRECT ANSWES -- Dumb Terminals Which device is responsible for implementing network address translation (NAT)? a. Modem b. Router c. NIC d. Switch - CORRECT ANSWES -- Router Which command produces the following output? Non-authoritative answer: Name: www.google.com Address: 172.217.11. a. dig b. nslookup d. whois d. nmap - CORRECT ANSWES -- nslookup
Which command should be used to manually enter the default gateway for a computer? a. route b. ipconfig c. arp d. netstat - CORRECT ANSWES -- route Which network diagnostic tool displays the path packets take between two endpoints? a. ifconfig b. traceroute c. ftp d. nslookup - CORRECT ANSWES -- traceroute Which network type is used to wire multiple PCs to a home router? a. LAN b. PAN c. MAN d. WAN - CORRECT ANSWES -- LAN An office's infrastructure connects network devices and printers through a central access point without the use of cabling. Which network type does this office use? a. WLAN b. WAN c. CAN d. SAN - CORRECT ANSWES -- WLAN What type of medium is commonly used within a 1000 Mbps Ethernet network? a. CAT 5 b. CAT5e c. Coax d. Wireless - CORRECT ANSWES -- CAT5e Which network topology is shown in the following diagram? a. Full mesh b. Star c. Bus d. Ring - CORRECT ANSWES -- Full Mesh
Which type of software is used to provide virtualization? a. Database b. Hypervisor c. Antivirus d. Spreadsheet - CORRECT ANSWES -- Hypervisor A user that does not want to be identified while communicating on a network uses an application to alter the computer's identity. Which type of exploit is being perpetrated? a. Denial-of-service b. ARP poisoning c. Smurf attack d. Spoofing - CORRECT ANSWES -- Spoofing An attacker attempts to misdirect traffic on a network back to the attacker by corrupting the network computer's cache of IP address to MAC address mappings that are cached. Which exploit is the attacker perpetrating? a. Port scanning b. Wiretapping c. Denial-of-service d. ARP poisoning - CORRECT ANSWES -- ARP poisoning Which exploit actually breaches the physical medium or uses devices to monitor signals from outside the physical medium itself? a. Spoofing b. Wiretapping c. Sniffing d. Port scanning - CORRECT ANSWES -- Wiretapping Which type of attack can overwhelm a web server by inserting more data into a web form than the system was configured to hold? a. Buffer overflow b. ARP poisoning c. Session hijacking d. Cross-site scripting - CORRECT ANSWES -- Buffer overflow Which type of attack sends an email claiming to be from a reputable business in order to entice the recipient to provide sensitive information? a. Denial-of-service
b. Phishing c. Password attacks d. Man-in-the-middle - CORRECT ANSWES -- Phishing A user on a network is planning to launch an exploit against a coworker in a neighboring department. The user needs to identify the IP address of a coworker in the desired department. Which tool or utility will allow the user to watch network traffic in real time to identify a target? a. Port scan b. Antivirus software c. Sniffer d. Port redirection - CORRECT ANSWES -- Sniffer Which group of attackers is typically used for penetration testing? a. Red Team b. Blue Team c. White Team d. Gray Team - CORRECT ANSWES -- Red Team Which type of attack exploits an unpatched software vulnerability? a. Zero-day b. Brue-force c. Diffie-Hellman d. Man-in-the-middle - CORRECT ANSWES -- Zero-day A company has the policy that all new user passwords are P@ssw0rd but does not require new users to change their password. An employee randomly tries a coworker's account with the new user password to see if they can log in as the coworker. Which type of vulnerability does this create? a. BYOD b. Weak password c. Default password d. Misconfigured firewall rules - CORRECT ANSWES -- Default password An employee that does not want to miss emails from important clients sets up her cellular smartphone to allow her to check email. Unfortunately, she does not install antivirus software on the cellular phone. What type of vulnerability is represented? a. Industry threat b. Misconfigured firewall rules c. Weak passwords
An attacker plans to exploit flaws in an operating system to gain access to a user's computer system. What is a prevention mechanism for this type of attack? a. Firewall b. Patching c. Antivirus d. Virtual Private Network (VPN) - CORRECT ANSWES -- b. Patching An unauthorized third-party has gained access to a company network. How can they be prevented from deleting data? a. Access controls b. Physical controls c. Biometrics d. Man trap - CORRECT ANSWES -- a. Access controls An attacker has gained access to the passwords of several employees of a company through a brute force attack. Which authentication method would keep the attacker from accessing the employees' devices? a. MFA (multi-factor authentication) b. AAA (authentication, authorization, and accounting) c. PKI (public key infrastructure) d. TCP/IP (transmission control protocol/internet protocol - CORRECT ANSWES -- a. MFA (multi-factor authentication) After downloading a CD/DVD burning program, a user notices that someone is remotely accessing the computer during nighttime hours. Which type of malware is likely found in the CD/DVD software? a. Virus b. Adware c. Worm d. Trojan horse - CORRECT ANSWES -- d. Trojan horse A user is working on a home computer when another user seems to open an application to view documents on the same computer. The user immediately suspects that a back door into the computer exists.Which action should be taken first to deal with the problem? a. Close the application the remote user opened b. Begin running antivirus scans c. Unplug the PC's network connection d. Open task manager to determine which applications are running - CORRECT ANSWES -- c. Unplug the PC's network connection
A user receives an email from an unknown bank saying that the user's account with the bank has been compromised. The user suspects that this is a phishing exploit. How should the user safely proceed? a. Click the link provided in the email to receive more information. b. Open a new browser page, navigate to the bank's website, and acquire legitimate contact information to report the email. c. Use antivirus software to scan the email. d. Report the bank to the appropriate Internet registrar. - CORRECT ANSWES -- b. Open a new browser page, navigate to the bank's website, and acquire legitimate contact information to report the email. A malicious user was able to lock a user's account after guessing the user's password multiple times unsuccessfully. Which category of the CIA triad did the malicious user target in this attack? a. Confidentiality b. Integrity c. Availability d. Accessibility - CORRECT ANSWES -- c. Availability Which category of the CIA triad is affected when an unauthorized user changes the data within a read-only file? a. Confidentiality b. Integrity c. Authenticity d. Accessibility - CORRECT ANSWES -- b. Integrity An analyst has identified an active denial of service attack. Which category of the CIA triad is affected? a. Confidentiality b. Availability c. Integrity d. Application - CORRECT ANSWES -- b. Availability While investigating a security incident, a technician discovers an unauthorized packet- capturing tool on the network. Which category of the CIA triad is being attacked? a. Authenticity b. Confidentiality c. Availability
a. ARP spoofing b. Evil-twin attack c. Rogue DHCP server d. IP starvation - CORRECT ANSWES -- a. ARP spoofing Which type of port has access to all VLANs by default in a traditional layer 2 switch? a. Uplink b. Downlink c. Trunk d. Console - CORRECT ANSWES -- c. Trunk A company provides access to employees' tax and personal information via a public- facing web portal. What should the company implement to encrypt employees' web access to this information? a. Transport layer security (TLS) b. Network intrusion detection system (NIDS) c. Advanced encryption standard (AES) d. Two-factor authentication (2FA) - CORRECT ANSWES -- a. Transport layer security (TLS) What is end-to-end encryption? a. Data is encrypted on the sender's system and only the recipient is able to decrypt it. b. Certificate authorities establish static routes for two systems to communicate. c. Temporary VPN is established to protect all data communications. d. Data is encrypted with a private pre-shared key and cannot be decrypted by the sender. - CORRECT ANSWES -- a. Data is encrypted on the sender's system and only the recipient is able to decrypt it. Which phrase describes unencrypted data? a. In the clear b. At rest c. In transit d. Ciphertext - CORRECT ANSWES -- a. In the clear Which type of wireless security protocol is the most secure? a. WPA2 + AES b. WEP c. WPA + TKIP d. TKIP + AES - CORRECT ANSWES -- a. WPA2 + AES
Which statement is true when comparing AES encryption to Triple DES (3DES)? a. AES requires less CPU utilization and uses a larger block size than 3DES. b. 3DES requires less CPU utilization and uses a larger block size than AES. c. 3DES is a superior encryption protocol due to the triple nature. d. AES was designed to run on high-end hardware, ensuring speedy throughput. - CORRECT ANSWES -- a. AES requires less CPU utilization and uses a larger block size than 3DES. What is the best defense against fake access attacks? a. Never use unsecured Wi-Fi hotspots. b. Never open unsolicited offers. c. Never click on a link within an email. d. Never reply to an unsolicited email. - CORRECT ANSWES -- a. Never use unsecured Wi-Fi hotspots. Which cloud feature is used to prevent data loss and provide for data retrieval in the event of a disaster? a. Data backups and archives b. Database encryption c. Data cleansing and analytics d. Database monitoring - CORRECT ANSWES -- a. Data backups and archives Which cloud-hosting model provides exclusive cloud access for a single company? a. Private b. Public c. Community d. Hybrid - CORRECT ANSWES -- a. Private What should a cloud provider use to secure data in flight? a. Private key encryption b. Demilitarized zone c. Multifactor authentication d. Updated antivirus software - CORRECT ANSWES -- a. Private key encryption An administrator fails to configure protection for usernames and passwords transmitted across the network. Which component of the AAA model is weakened? a. Authentication b. Authorization c. Access
Traceroute Ping nmap netstat - CORRECT ANSWES -- Ping A bridge _________________________________________________ a. connects wireless devices to the network using AES b. connects storage systems using IP based connections c. connects two networks by forwarding traffic without analysis for which host receives the data d. provides a direct connection to devices on the same network - CORRECT ANSWES -- c. connects two networks by forwarding traffic without analysis for which host receives the data IP addressing is used on which layer of the OSI model to route source and destination IP traffic? Layer 3 Layer 4 Layer 7 Layer 5 Layer 2 - CORRECT ANSWES -- Layer 3 A network admin is configuring an application and needs to be sure that port 4432 is open what tool should the admin use? Ping netstat nmap TCP_Function - CORRECT ANSWES -- nmap (Network Mapper) It is an open-source Linux command-line tool that is used to scan IP addresses and ports in a network and to detect installed applications. TCP is used on IP networks to: a. decrease the need for switches, and is a Layer 4 protocol b. increase the security of the network, and is a Layer 4 protocol c. reduce the overhead of data transmissions, and is a Layer 5 protocol d. to ensure the integrity and reliability of data communications on networks, and is a Layer 4 protocol - CORRECT ANSWES -- to ensure the integrity and reliability of data communications on networks, and is a Layer 4 protocol
A switch is a Layer 1 device and unlike a hub it creates a direct connection to devices on the network. True False - CORRECT ANSWES -- False Because MAC addressing is a Layer 3 protocol, it is wise to choose a router that can use MAC addresses to transverse the internet. True False - CORRECT ANSWES -- False What is a logical address? What is a physical address? MAC Address/IP Address IPv4 address/IPv6 address IP Address/ Mac address IPv6 address/ IPv4 address - CORRECT ANSWES -- IP Address/ Mac address What is an example of a UTP cable? Fiber Optics LC cable CAT5 cable Coaxial cable InfiniBand - CORRECT ANSWES -- CAT5 cable If a windows administrator is on a windows computer and needs to get the IP Address of the computer they are working on what tool should the admin use. ifconfig ipconfig netstat ftp - CORRECT ANSWES -- ipconfig If a network admin needs to see if a TCP connection is active on a computer what tool should they use? netuse netmap netstat nmap - CORRECT ANSWES -- netstat