In the context of Windows Security, what is a 'null' user?

• A.A pseudo account that has no username and password
• B.A pseudo account that was created for security administration purpose
• C.An account that has been suspended by the admin
• D.A user that has no skills

Comment: *

Name: *

Email: *

Verification: *

The security administrator of ABC needs to permit Internet traffic in the host 10.0.0.2 and UDP traffic in the host
10.0.0.3. He also needs to permit all FTP traffic to the rest of the network and deny all other traffic. After he applied his ACL configuration in the router, nobody can access the ftp, and the permitted hosts cannot access the Internet. According to the next configuration, what is happening in the network?
access-list 102 deny tcp any any
access-list 104 permit udp host 10.0.0.3 any
access-list 110 permit tcp host 10.0.0.2 eq www any
access-list 108 permit tcp any eq ftp any

• A.The ACL 104 needs to be first because is UDP
• B.The first ACL is denying all TCP traffic and the other ACLs are being ignored by the router
• C.The ACL for FTP must be before the ACL 110
• D.The ACL 110 needs to be changed to port 80

Correct Answer: B

https://www.cisco.com/c/en/us/support/docs/ip/access-lists/26448-ACLsamples.html Since the first line prohibits any TCP traffic (access-list 102 deny tcp any any), the lines below will simply be ignored by the router. Below you will find the example from CISCO documentation.
This figure shows that FTP (TCP, port 21) and FTP data (port 20) traffic sourced from NetB destined to NetA is denied, while all other IP traffic is permitted.
Diagram Description automatically generated

FTP uses port 21 and port 20. TCP traffic destined to port 21 and port 20 is denied and everything else is explicitly permitted.
* access-list 102 deny tcp any any eq ftp
* access-list 102 deny tcp any any eq ftp-data
* access-list 102 permit ip any any

Comment: *

Name: *

Email: *

Verification: *

Harry. a professional hacker, targets the IT infrastructure of an organization. After preparing for the attack, he attempts to enter the target network using techniques such as sending spear-phishing emails and exploiting vulnerabilities on publicly available servers. Using these techniques, he successfully deployed malware on the target system to establish an outbound connection. What is the APT lifecycle phase that Harry is currently executing?

• A.Preparation
• B.Cleanup
• C.Persistence
• D.initial intrusion

Correct Answer: A

After the attacker completes preparations, subsequent step is an effort to realize an edge within the target's environment. a particularly common entry tactic is that the use of spearphishing emails containing an internet link or attachment. Email links usually cause sites where the target's browser and related software are subjected to varied exploit techniques or where the APT actors plan to social engineer information from the victim which will be used later. If a successful exploit takes place, it installs an initial malware payload on the victim's computer. Figure 2 illustrates an example of a spearphishing email that contains an attachment. Attachments are usually executable malware, a zipper or other archive containing malware, or a malicious Office or Adobe PDF (Portable Document Format) document that exploits vulnerabilities within the victim's applications to ultimately execute malware on the victim's computer. Once the user has opened a malicious file using vulnerable software, malware is executing on the target system. These phishing emails are often very convincing and difficult to differentiate from legitimate email messages. Tactics to extend their believability include modifying legitimate documents from or associated with the organization. Documents are sometimes stolen from the organization or their collaborators during previous exploitation operations. Actors modify the documents by adding exploits and malicious code then send them to the victims. Phishing emails are commonly sent through previously compromised email servers, email accounts at organizations associated with the target or public email services. Emails also can be sent through mail relays with modified email headers to form the messages appear to possess originated from legitimate sources. Exploitation of vulnerabilities on public-facing servers is another favorite technique of some APT groups. Though this will be accomplished using exploits for known vulnerabilities, 0-days are often developed or purchased to be used in intrusions as required .

Comment: *

Name: *

Email: *

Verification: *

which of the following Bluetooth hacking techniques refers to the theft of information from a wireless device through Bluetooth?

• A.Bluesmacking
• B.Bluebugging
• C.Bluejacking
• D.Bluesnarfing

Comment: *

Name: *

Email: *

Verification: *

Nathan is testing some of his network devices. Nathan is using Macof to try and flood the ARP cache of these switches.
If these switches' ARP cache is successfully flooded, what will be the result?

• A.If the ARP cache is flooded, the switches will drop into pix mode making it less susceptible to attacks.
• B.The switches will route all traffic to the broadcast address created collisions.
• C.Depending on the switch manufacturer, the device will either delete every entry in its ARP cache or reroute packets to the nearest switch.
• D.The switches will drop into hub mode if the ARP cache is successfully flooded.

Comment: *

Name: *

Email: *

Verification: *