Question 1

A security analyst receives an alert from a WAF with the following payload: var data= "" ++ <../../../../../../etc/passwd>" Which of the following types of attacks is this?

Accepted Answer

The answer of A security analyst receives an alert from...

Question 2

After attempting to harden a web server, a security analyst needs to determine if an application remains vulnerable to SQL injection attacks. Which of the following would BEST assist the analyst in making this determination?

Accepted Answer

A fuzzer is a tool that can be used to test applications for vulnerabilities, including SQL injection, by inputting a wide range of unexpected or random data to see how the application responds.

Question 3

Which of the following methods minimizes the system interaction when gathering information to conduct a vulnerability assessment of a router?

Accepted Answer

Downloading the configuration allows for a review of the router's settings without actively interacting with the system, minimizing potential disruptions.

Question 4

A security administrator has configured a RADIUS and a TACACS+ server on the company's network. Network devices will be required to connect to the TACACS+ server for authentication and send accounting information to the RADIUS server. Given the following information: RADIUS IP: 192.168.20.45 TACACS+ IP: 10.23.65.7 Which of the following should be configured on the network clients? (Select two.)

Accepted Answer

The answer of A security administrator has configured a RADIUS...

Question 5

Which of the following is the main difference an XSS vulnerability and a CSRF vulnerability?

Accepted Answer

The answer of Which of the following is the main...

Question 6

A security analyst is hardening a large-scale wireless network. The primary requirements are the following: Must use authentication through EAP-TLS certificates Must use an AAA server Must use the most secure encryption protocol Given these requirements, which of the following should the analyst implement and recommend? (Select TWO.)

Accepted Answer

The answer of A security analyst is hardening a large-scale...

Question 7

After a merger between two companies a security analyst has been asked to ensure that the organization's systems are secured against infiltration by any former employees that were terminated during the transition. Which of the following actions are MOST appropriate to harden applications against infiltration by former employees? (Select TWO)

Accepted Answer

Updating access control policies ensures that only current employees have access, and eliminating inactive accounts prevents former employees from accessing the systems.

Question 8

Which of the following are considered among the BEST indicators that a received message is a hoax? (Choose two.)

Accepted Answer

The answer of Which of the following are considered among...

Question 9

While troubleshooting a client application connecting to the network, the security administrator notices the following error: Certificate is not valid. Which of the following is the BEST way to check if the digital certificate is valid?

Accepted Answer

The Certificate Revocation List (CRL) is used to check if a digital certificate has been revoked and is no longer valid.

Question 10

When attempting to secure a mobile workstation, which of the following authentication technologies rely on the user's physical characteristics? (Select TWO)

Accepted Answer

Retina scans and fingerprint scans are both authentication technologies that rely on the user's physical characteristics. Retina scans use a laser to scan the unique pattern of blood vessels in the back of the eye, while fingerprint scans use a sensor to scan the unique pattern of ridges and valleys on the finger.

Question 11

A new Chief Information Officer (CIO) has been reviewing the badging and decides to write a policy that all employees must have their badges rekeyed at least annually. Which of the following controls BEST describes this policy?

Accepted Answer

This policy is an administrative control as it involves creating and enforcing policies and procedures to manage security.

Question 12

A security analyst conducts a manual scan on a known hardened host that identifies many non-compliant items. Which of the following BEST describe why this has occurred? (Choose two.)

Accepted Answer

The answer of A security analyst conducts a manual scan...

Question 13

A systems administrator has implemented multiple websites using host headers on the same server. The server hosts two websites that require encryption and other websites where encryption is optional. Which of the following should the administrator implement to encrypt web traffic for the required websites?

Accepted Answer

A TLS host certificate is used to encrypt web traffic for specific websites, ensuring secure communication.

Question 14

A company is deploying a file-sharing protocol access a network and needs to select a protocol for authenticating clients. Management requests that the service be configured in the most secure way possible. The protocol must also be capable of mutual authentication, and support SSO and smart card logons. Which of the following would BEST accomplish this task?

Accepted Answer

Kerberos is a secure protocol that supports mutual authentication, single sign-on (SSO), and smart card logons, making it the best choice for the company's requirements.

Question 15

A security administrator wants to implement a logon script that will prevent MITM attacks on the local LAN. Which of the following commands should the security administrator implement within the script to accomplish this task?

Accepted Answer

The answer of A security administrator wants to implement a...

Question 16

A workstation puts out a network request to locate another system. Joe, a hacker on the network, responds before the real system does, and he tricks the workstation into communicating with him. Which of the following BEST describes what occurred?

Accepted Answer

The answer of A workstation puts out a network request...

Question 17

A security manager is creating an account management policy for a global organization with sales personnel who must access corporate network resources while traveling all over the world. Which of the following practices is the security manager MOST likely to enforce with the policy? (Select TWO)

Accepted Answer

The answer of A security manager is creating an account...

Question 18

A security administrator is diagnosing a server where the CPU utilization is at 100% for 24 hours. The main culprit of CPU utilization is the antivirus program. Which of the following issue could occur if left unresolved? (Select TWO)

Accepted Answer

A DoS attack could occur as the server may become unresponsive due to high CPU usage. Resource exhaustion is directly related as the CPU is being over-utilized, potentially leading to system instability or failure.

Question 19

A Chief Information Security Officer (CISO) asks the security architect to design a method for contractors to access the company's internal network securely without allowing access to systems beyond the scope of their project. Which of the following methods would BEST fit the needs of the CISO?

Accepted Answer

VPN allows for secure remote access to a private network, which is ideal for contractors who need to access the company's internal network without being physically present.

Question 20

Despite having implemented password policies, users continue to set the same weak passwords and reuse old passwords. Which of the following technical controls would help prevent these policy violations? (Select two.)

Accepted Answer

Password complexity ensures users create stronger passwords by requiring a mix of characters, while password history prevents users from reusing old passwords.

Exam 15: CompTIA Security+

A security analyst receives an alert from a WAF with the following payload: var data= "<test test test>" ++ <../../../../../../etc/passwd>" Which of the following types of attacks is this?