CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
Comptia Pentest+ 2023 Questions and answer - Part 44
1. Select a wireless network detector that is popular in Linux OS.
A) Netstumber
B) Kismet
C) Nessus
D) Abel
2. Code injection is a type of attack in which a malicious user _________________.
A) Gets the server to execute arbitrary code using a buffer overflow
B) Inserts text into a data field that gets interpreted as code
C) Inserts additional code into the JavaScript running in the browser
D) Gains access to the codebase on the server and inserts new code
3. The payment Card Industry Data Security Standard (PCI DSS) contains six different kinds of objectives. Each objective contains at least one requirement, which must be followed in order to achieve compliance. Select the following requirements that would best fit under the objective, -Implement strong access control measures.
A) Encrypt transmission of card holder data across open and public networks
B) Assign a unique ID to each person with computer access
C) Use and regularly update anti-virus software on all systems commonly affected by malware
D) Regularly test security systems and processes
4. Which one of the following is an NMAP script that might help detect HTTP methods such as GET, HEAD, POST, PUT, TRACE, DELETE?
A) http-git
B) http-headers
C) http-methods
D) http enum
5. If an attacker has access to a Linux host and he has stolen the password file form/passwd/et What could he do now?
A) He can open it and read the user IDs and corresponding passwords
B) He can use the file that reveals the passwords to the root user only
C) He can use the password file that does not contain the passwords themselves
D) He cannot read it because it is encrypted
A) Netstumber
B) Kismet
C) Nessus
D) Abel
2. Code injection is a type of attack in which a malicious user _________________.
A) Gets the server to execute arbitrary code using a buffer overflow
B) Inserts text into a data field that gets interpreted as code
C) Inserts additional code into the JavaScript running in the browser
D) Gains access to the codebase on the server and inserts new code
3. The payment Card Industry Data Security Standard (PCI DSS) contains six different kinds of objectives. Each objective contains at least one requirement, which must be followed in order to achieve compliance. Select the following requirements that would best fit under the objective, -Implement strong access control measures.
A) Encrypt transmission of card holder data across open and public networks
B) Assign a unique ID to each person with computer access
C) Use and regularly update anti-virus software on all systems commonly affected by malware
D) Regularly test security systems and processes
4. Which one of the following is an NMAP script that might help detect HTTP methods such as GET, HEAD, POST, PUT, TRACE, DELETE?
A) http-git
B) http-headers
C) http-methods
D) http enum
5. If an attacker has access to a Linux host and he has stolen the password file form/passwd/et What could he do now?
A) He can open it and read the user IDs and corresponding passwords
B) He can use the file that reveals the passwords to the root user only
C) He can use the password file that does not contain the passwords themselves
D) He cannot read it because it is encrypted
1. Right Answer: C
Explanation: Kismet is a wireless network and device detector, sniffer, wardriving tool, and WIDs (Wireless Intrusion Detections) System for 802.11 wireless LANS. It works on Linux, and, Windows 10 under the WSL system. On Linux, Kismet works with most Wi-Fi cards, Bluetooth interfaces, and other hardware devices.
2. Right Answer: C
Explanation: Code injection is the exploitation of a computer bug that is caused by processing invalid dat Injection is used by an attacker to introduce (or 'inject') code into a vulnerable computer program and change the course of execution.
3. Right Answer: B
Explanation: Assign a unique Identification (ID) to each person with access to ensure that each individual is uniquely available for their action.
4. Right Answer: C
Explanation: http-methods is an NMAP script that might help detect HTTP methods such as GET, HEAD, POST, PUT, TRACE, DELETE.
5. Right Answer: A
Explanation: He can use the password file that does not contain the passwords itself.
Explanation: Kismet is a wireless network and device detector, sniffer, wardriving tool, and WIDs (Wireless Intrusion Detections) System for 802.11 wireless LANS. It works on Linux, and, Windows 10 under the WSL system. On Linux, Kismet works with most Wi-Fi cards, Bluetooth interfaces, and other hardware devices.
2. Right Answer: C
Explanation: Code injection is the exploitation of a computer bug that is caused by processing invalid dat Injection is used by an attacker to introduce (or 'inject') code into a vulnerable computer program and change the course of execution.
3. Right Answer: B
Explanation: Assign a unique Identification (ID) to each person with access to ensure that each individual is uniquely available for their action.
4. Right Answer: C
Explanation: http-methods is an NMAP script that might help detect HTTP methods such as GET, HEAD, POST, PUT, TRACE, DELETE.
5. Right Answer: A
Explanation: He can use the password file that does not contain the passwords itself.
Tags:
comptia it exams it certification exams it certifications 2023 comptia exam comptia certification comptia questions comptia a+ comptia exam prep comptia 2023 compti prep materials comptia practice exams questions and answers practice tests test question test comptia a+ comptia a+ 1001 comptioa a+ 1002 comptia casp comptia cloud comptia cysa comptia it fundamentals comptia linux comptia network+ comptia security+ linux essentials0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment