Which of the following tools scans the network systems for well-known and often exploited vulnerabilities?
Correct Answer: B
Question 257
Choose the correct order of steps to analyze the attack surface.
Correct Answer: A
The correct order of steps to analyze the attack surface begins with identifying the indicators of exposure. This step involves recognizing the elements within the system that could potentially be exploited by threats. Following this, the attack surface is visualized to understand the scope and scale of potential attack vectors. Next, a simulation of the attack is conducted to assess the effectiveness of the current security measures and identify any vulnerabilities. Finally, the attack surface is reduced by implementing measures to mitigate the identified risks and vulnerabilities, thereby enhancing the overall security posture.
Question 258
Which of the following tools is a free laptop tracker that helps in tracking a user's laptop in case it gets stolen?
Correct Answer: B
Adeona is a free laptop tracker that helps in tracking a user's laptop in case it gets stolen. All it takes is to install the Adeona software client on the user's laptop, pick a password, and make it run in the background. If at one point, the user's laptop gets stolen and is connected to the Internet, the Adeona software sends the criminal's IP address. Using the Adeona Recovery, the IP address can then be retrieved. Knowing the IP address helps in tracking the geographical location of the stolen device. Answer option D is incorrect. Nessus is proprietary comprehensive vulnerability scanning software. It is free of charge for personal use in a non-enterprise environment. Its goal is to detect potential vulnerabilities on tested systems. It is capable of checking various types of vulnerabilities, some of which are as follows: Vulnerabilities that allow a remote cracker to control or access sensitive data on a system Misconfiguration (e.g. open mail relay, missing patches, etc), Default passwords, a few common passwords, and blank/absent passwords on some system accounts. Nessus can also call Hydra (an external tool) to launch a dictionary attack. Denials of service against the TCP/IP stack by using mangled packets Answer option A is incorrect. SAINT stands for System Administrator's Integrated Network Tool. It is computer software used for scanning computer networks for security vulnerabilities, and exploiting found vulnerabilities. The SAINT scanner screens every live system on a network for TCP and UDP services. For each service it finds running, it launches a set of probes designed to detect anything that could allow an attacker to gain unauthorized access, create a denial-of-service, or gain sensitive information about the network. Answer option C is incorrect. Snort is an open source network intrusion detection system. The Snort application analyzes network traffic in realtime mode. It performs packet sniffing, packet logging, protocol analysis, and a content search to detect a variety of potential attacks.
Question 259
FILL BLANK Fill in the blank with the appropriate term. ______________ is a prime example of a high-interaction honeypot.
Correct Answer:
Honeynet Explanation: Honeynet is a prime example of a high-interaction honeypot. Two or more honeypots on a network form a honeynet. Typically, a honeynet is used for monitoring a larger and/or more diverse network in which one honeypot may not be sufficient. Honeynets and honeypots are usually implemented as parts of larger network intrusion-detection systems. A honeyfarm is a centralized collection of honeypots and analysis tools.
Question 260
Kelly is taking backups of the organization's dat a. Currently, he is taking backups of only those files which are created or modified after the last backup. What type of backup is Kelly using?
