During a penetration test, a vendor attempts to enter an unauthorized area using an access badge Which of the following types of tests does this represent?

• A.Defensive
• B.Passive
• C.Offensive
• D.Physical

Comment: *

Name: *

Email: *

Verification: *

Which of the following is used to quantitatively measure the criticality of a vulnerability?

• A.CVE
• B.CVSS
• C.CIA
• D.CERT

Comment: *

Name: *

Email: *

Verification: *

A security team is reviewing the findings in a report that was delivered after a third party performed a penetration test. One of the findings indicated that a web application form field is vulnerable to cross-site scripting. Which of the following application security techniques should the security analyst recommend the developer implement to prevent this vulnerability?

• A.Secure cookies
• B.Version control
• C.Input validation
• D.Code signing

Comment: *

Name: *

Email: *

Verification: *

A systems administrator uses a key to encrypt a message being sent to a peer in a different branch office. The peer then uses the same key to decrypt the message. Which of the following describes this example?

• A.Hashing
• B.Salting
• C.Asymmetric
• D.Symmetric

Comment: *

Name: *

Email: *

Verification: *

A security analyst reviews domain activity logs and notices the following:
Which of the following is the best explanation for what the security analyst has discovered?

• A.The user jsmith's account has been locked out.
• B.A keylogger is installed on [smith's workstation
• C.An attacker is attempting to brute force ismith's account.
• D.Ransomware has been deployed in the domain.

Comment: *

Name: *

Email: *

Verification: *