312-50v10 Free Practice Test

- (Exam Topic 6)
Which of the following BEST describes the mechanism of a Boot Sector Virus?

1. A. Moves the MBR to another location on the hard disk and copies itself to the original location of the MBR
2. B. Moves the MBR to another location on the RAM and copies itself to the original location of the MBR
3. C. Overwrites the original MBR and only executes the new virus code
4. D. Modifies directory table entries so that directory entries point to the virus code instead of the actual program

Correct Answer: A

- (Exam Topic 1)
Which component of IPsec performs protocol-level functions that are required to encrypt and decrypt the packets?

1. A. Internet Key Exchange (IKE)
2. B. Oakley
3. C. IPsec Policy Agent
4. D. IPsec driver

Correct Answer: A

- (Exam Topic 6)
While you were gathering information as part of security assessments for one of your clients, you were able to gather data that show your client is involved with fraudulent activities. What should you do?

1. A. Immediately stop work and contact the proper legal authorities
2. B. Ignore the data and continue the assessment until completed as agreed
3. C. Confront the client in a respectful manner and ask her about the data
4. D. Copy the data to removable media and keep it in case you need it

Correct Answer: A

- (Exam Topic 3)
Which NMAP feature can a tester implement or adjust while scanning for open ports to avoid detection by the network’s IDS?

1. A. Timing options to slow the speed that the port scan is conducted
2. B. Fingerprinting to identify which operating systems are running on the network
3. C. ICMP ping sweep to determine which hosts on the network are not available
4. D. Traceroute to control the path of the packets sent during the scan

Correct Answer: A

- (Exam Topic 4)
It is an entity or event with the potential to adversely impact a system through unauthorized access, destruction, disclosure, denial of service or modification of data.
Which of the following terms best matches the definition?

1. A. Threat
2. B. Attack
3. C. Vulnerability
4. D. Risk

Correct Answer: A
A threat is at any circumstance or event with the potential to adversely impact organizational operations (including mission, functions, image, or reputation), organizational assets, or individuals through an information system via unauthorized access, destruction, disclosure, modification of information, and/or denial of service. Also, the potential for a threat-source to successfully exploit a particular information system vulnerability.
References: https://en.wikipedia.org/wiki/Threat_(computer)