Question 1

Carl is a new cybersecurity analyst. His manager has just asked him to implement a vulnerability scanner that uses the CVSS. Which of the following best describes why he would want to use it?
A) The cybersecurity virtual scanning software will help protect the company's virtual machine infrastructure from attacks specific to virtualized and hypervisor-based technologies.
B) The computerized vector scanning system will determine which attack vectors are most vulnerable to the threat of malicious threat actors who can exploit weaknesses in the company's infrastructure.
C) The Common Vulnerability Scoring System will allow the organization to prioritize which vulnerabilities it should mitigate first or implement compensating controls for.
D) The central vulnerability scanning service will allow the company to easily automate scans from a centralized system rather than have to install components on individual servers and systems.

Accepted Answer

The Common Vulnerability Scoring System (CVSS) provides a way to capture the principal characteristics of a vulnerability and produce a numerical score reflecting its severity. This score can then be used to prioritize response and mitigation efforts for vulnerabilities discovered in the organization's systems.

Question 2

Simone, a cybersecurity researcher, has just finished the analysis and documentation of a new vulnerability she discovered in a widely used product. In addition to contacting the manufacturer of the software, she also believes it is necessary to make a plug-in available so common vulnerability scanners can pick up the vulnerability in their scans. Which of the following would be helpful for her to know in order to meet this goal?
A) NASL
B) ACL
C) TLS
D) NIDS

Accepted Answer

NASL (Nessus Attack Scripting Language) is used to write plugins for the Nessus vulnerability scanner, which would help Simone create a plugin to detect the vulnerability.

Question 3

Piet is analyzing the report generated by a Nessus scan and sees two types of scores in the Risk Information section. One of the scores represents the intrinsic qualities of the vulnerability when it was first discovered. Which of the following scores represents these intrinsic qualities?
A) CVSS original score
B) CVSS base score
C) CVSS temporal score
D) CVSS environmental score

Accepted Answer

The CVSS base score represents the intrinsic qualities of a vulnerability when it was first discovered, reflecting its fundamental characteristics.

Question 4

Faranoush is examining the CVSS Base Score Exploitability Metrics to better understand the information she sees in her report. Which of the following reflects the ability of a vulnerability in one software component to impact other resources?
A) Scope
B) Attack vector
C) User interaction
D) Attack complexity

Accepted Answer

The "Scope" metric in the CVSS Base Score reflects whether a vulnerability in one software component can impact other resources beyond its own security scope.

Question 5

Cosmo is reviewing a recent Nessus scan report and sees a number of items that have recently had compensating controls implemented for them. Which of the following terms might describe these items in the report?
A) Unvoided transaction
B) Uncaught exception
C) Error handling
D) False positive

Accepted Answer

Compensating controls are implemented to mitigate the risk of vulnerabilities that cannot be fully remediated. If these controls are effective, the vulnerabilities might be considered false positives in the context of the scan report, as they do not pose a real threat due to the compensating controls.

Question 6

Phillida, a cybersecurity analyst, is comparing vulnerability scanning products for potential use in her organization. She reads that Nessus uses a combination of machine learning and threat intelligence to produce which of the following?
A) VPR
B) VPC
C) VSP
D) VCR

Accepted Answer

Nessus uses a combination of machine learning and threat intelligence to produce the Vulnerability Priority Rating (VPR), which helps prioritize vulnerabilities based on risk.

Question 7

Ramon, a cybersecurity analyst, is aware of the regulatory requirements that his organization must meet. He needs to make sure that best practices are meeting the goals of these regulatory requirements. Which of the following might he decide to employ as part of a vulnerability scan?
A) Plug-ins
B) CVSS temporal scoring
C) CVSS base scoring
D) Scanning template

Accepted Answer

The answer of Ramon, a cybersecurity analyst, is aware of...

Question 8

Kallie, a cybersecurity analyst, has just returned from a cybersecurity conference where she learned about the Nessus vulnerability scanner. She wants to try it at her company, but her software budget has already been spent for the fiscal year. Which of the following versions should she consider installing?
A) Nessus Basic
B) Nessus Manager
C) Nessus Essentials
D) Nessus Agent

Accepted Answer

Nessus Essentials is the version that Kallie should consider because it is free and allows users to scan up to 16 IP addresses, making it suitable for small environments or for those who want to try Nessus without financial commitment.

Question 9

Alaa wants to update her Nessus installation to ensure that she is scanning for all recently discovered vulnerabilities. Which of the following does she need to download?
A) Modules
B) Plug-ins
C) Service packs
D) Hotfixes

Accepted Answer

Nessus updates its vulnerability checks through plug-ins. These plug-ins contain the latest vulnerability tests to ensure the scanner can identify new threats.

Question 10

Darien last ran a vulnerability scan a year ago. Which of the following could he expect to have changed if he ran the scan again today?
A) Vulnerability ID of previously found items
B) CVSS base score
C) CVSS temporal score
D) Published date

Accepted Answer

The CVSS temporal score can change over time as it reflects factors that change, such as the availability of exploits or patches. The other options (Vulnerability ID, CVSS base score, and Published date) typically remain constant once assigned or published.

Question 11

Nephele is looking at the vulnerabilities found in her organization. She wants to figure out which ones must be present or addressed from the local network compared to the ones that must be addressed either from an adjacent network or other network. Which of the following metrics covers this information?
A) Scope
B) Attack vector
C) Attack complexity
D) User interaction

Accepted Answer

The Attack Vector metric in the Common Vulnerability Scoring System (CVSS) specifies how a vulnerability can be exploited, including whether an attack must be conducted from the local network, an adjacent network, or a remote one. This directly addresses Nephele's need to differentiate vulnerabilities based on their exploitable location.

Question 12

Morwenna wants to install Nessus for a trial run on her company's infrastructure. Which of the following is the default method of installation?
A) HTTPS
B) FTPS
C) SFTP
D) SCP

Accepted Answer

Nessus typically uses HTTPS for its default method of installation, ensuring secure communication over the network. This protocol is widely used for secure transactions and data transmission over the internet, making it a suitable choice for installing security tools like Nessus.

Question 13

Dimitri wants to install Nessus on the systems within his network, but is concerned that Nessus may not be compatible with certain types of devices in his company. Which of the following is Nessus not compatible with?
A) Linux
B) UNIX
C) Windows
D) macOS
E) None of the above. It is compatible with all of these options.

Accepted Answer

Nessus is a widely used vulnerability scanner that is compatible with a variety of operating systems, including Linux, UNIX, Windows, and macOS. This broad compatibility allows it to be used in diverse IT environments.

Question 14

Valeria, a cybersecurity manager, wants to start using a vulnerability scanner at the large global organization where she works. Which of the following might be the best fit for this organization?
A) Nessus Essentials
B) Nessus Manager
C) Nessus Professional
D) Nessus Global

Accepted Answer

Nessus Manager is designed for larger organizations, offering the ability to manage multiple scanners and users, which suits the needs of a global organization better than the other options listed. Nessus Essentials is more for personal use, Nessus Professional is for single-user operation, and Nessus Global does not exist as a product offering.

Question 15

Gabriel is trying to understand the metrics behind the scores that Nessus uses. He asks you which of the metrics is based on the attacker having to gather more information about the target before the vulnerability can be exploited. Which of the following identifies the metric he described?
A) Scope
B) Privileges required
C) Attack vector
D) Attack complexity

Accepted Answer

Attack complexity refers to the metric that measures how much effort and conditions outside the attacker's control are necessary to exploit the vulnerability. In this case, it includes the need for the attacker to gather more information about the target, making it more complex to exploit.

Question 16

Franco, a cybersecurity analyst, has just received a report that a piece of malware has been detected on a user's system. The user downloaded a solitaire game that had pictures of cats on the back of the cards, and he just couldn't resist. After examining the computer and network traffic, Franco finds that the game has been allowing an intruder to connect to the computer and execute commands on the system as well as send files to a remote server. Which of the following has Franco found?
A) Worm
B) Trojan
C) RAT
D) Ransomware

Accepted Answer

Franco has found a RAT (Remote Access Trojan), which allows an intruder to remotely control the infected system and execute commands, as well as transfer files to a remote server.

Question 17

Petronilla, a cybersecurity researcher, has just received a call from a client who reports that someone has redirected multiple A record entries on their recursive server to an incorrect IP address. Which of the following has occurred?
A) DNS poisoning
B) DNS manipulation
C) Authoritative DNS modification
D) ARP manipulation

Accepted Answer

DNS poisoning, also known as DNS cache poisoning, occurs when incorrect DNS records are inserted into the cache of a DNS resolver, causing it to return an incorrect IP address for a domain name. This matches the scenario described where A record entries are redirected to an incorrect IP address.

Question 18

Nik, a cybersecurity analyst, has been asked to examine an employee's iPhone that is exhibiting strange behavior. After looking through the phone, he finds that the user apparently has been able to upload third-party apps that are not in the App Store. Which of the following has most likely occurred with this phone?
A) Rooting
B) Jailbreaking
C) Clapping
D) Raking

Accepted Answer

Jailbreaking is the process specific to Apple devices, like iPhones, that allows users to remove software restrictions imposed by iOS, enabling the installation of third-party apps not available in the App Store.

Question 19

Suki wants to analyze all of the traffic being sent to and from a group of 10 computers that are all connected to the same networking device. He decides to install a sniffing device that will capture packets and then enable port mirroring on the networking device to send copies of the traffic to the sniffing device. Which of the following networking devices is he most likely using?
A) Bridge
B) Switch
C) Router
D) Load balancer

Accepted Answer

Suki is most likely using a switch because port mirroring is a feature commonly found on network switches. It allows the switch to send a copy of network packets seen on one switch port (or an entire VLAN) to a network monitoring connection on another switch port. This is used for network appliances that require monitoring of network traffic, such as intrusion detection systems and packet sniffers.

Question 20

Jupiter is a systems administrator for a growing company. Until recently, one web server has been enough to handle the traffic load for her organization. However, she knows that if something happens to this server, the website could go down for an undetermined amount of time. She is considering moving the website to a cloud configuration, but she knows that if the server failed in the cloud, it would be a single point of failure. Which of the following might she want to implement in addition to a secondary web server?
A) Bridge
B) Switch
C) Router
D) Load balancer

Accepted Answer

A load balancer can distribute incoming network traffic across multiple servers, ensuring no single server becomes a point of failure or is overloaded, which is beneficial for Jupiter's scenario of wanting to avoid downtime and manage increased traffic efficiently.

Quiz 6: Analyzing Vulnerability Scans and Identifying Common Vulnerabilities

Carl is a new cybersecurity analyst. His manager has just asked him to implement a vulnerability scanner that uses the CVSS. Which of the following best describes why he would want to use it?

Piet is analyzing the report generated by a Nessus scan and sees two types of scores in the Risk Information section. One of the scores represents the intrinsic qualities of the vulnerability when it was first discovered. Which of the following scores represents these intrinsic qualities?

Faranoush is examining the CVSS Base Score Exploitability Metrics to better understand the information she sees in her report. Which of the following reflects the ability of a vulnerability in one software component to impact other resources?

Cosmo is reviewing a recent Nessus scan report and sees a number of items that have recently had compensating controls implemented for them. Which of the following terms might describe these items in the report?

Phillida, a cybersecurity analyst, is comparing vulnerability scanning products for potential use in her organization. She reads that Nessus uses a combination of machine learning and threat intelligence to produce which of the following?

Ramon, a cybersecurity analyst, is aware of the regulatory requirements that his organization must meet. He needs to make sure that best practices are meeting the goals of these regulatory requirements. Which of the following might he decide to employ as part of a vulnerability scan?

Alaa wants to update her Nessus installation to ensure that she is scanning for all recently discovered vulnerabilities. Which of the following does she need to download?

Darien last ran a vulnerability scan a year ago. Which of the following could he expect to have changed if he ran the scan again today?

Morwenna wants to install Nessus for a trial run on her company's infrastructure. Which of the following is the default method of installation?

Dimitri wants to install Nessus on the systems within his network, but is concerned that Nessus may not be compatible with certain types of devices in his company. Which of the following is Nessus not compatible with?

Valeria, a cybersecurity manager, wants to start using a vulnerability scanner at the large global organization where she works. Which of the following might be the best fit for this organization?

Gabriel is trying to understand the metrics behind the scores that Nessus uses. He asks you which of the metrics is based on the attacker having to gather more information about the target before the vulnerability can be exploited. Which of the following identifies the metric he described?

Petronilla, a cybersecurity researcher, has just received a call from a client who reports that someone has redirected multiple A record entries on their recursive server to an incorrect IP address. Which of the following has occurred?