EMT Practice Test
1. Question Content...
Question4: Which cipher encrypts the plain text digit (bit or byte) one by one?
Question12: Which of these options is the most secure procedure for storing backup tapes?
Question21: Which of the following is a component of a risk assessment?
Question23: > NMAP -sn 192.168.11.200-215
The NMAP command above performs which of the following?
Question25: Which element of Public Key Infrastructure (PKI) verifies the applicant?
Question27: Which of the following programs is usually targeted at Microsoft Office products?
Question35: Which set of access control solutions implements two-factor authentication?
Question41: The "white box testing" methodology enforces what kind of restriction?
Question42: Which security control role does encryption meet?
Question51: SOAP services use which technology to format information?
Question54: Which of the following statements regarding ethical hacking is incorrect?
Question59: What is a successful method for protecting a router from potential smurf attacks?
Question61: Which of the following is a detective control?
Question65: Which type of scan measures a person's external features through a digital video camera?
Question69: Which vital role does the U.S. Computer Security Incident Response Team (CSIRT) provide?
Question71: Passive reconnaissance involves collecting information through which of the following?
Question72: Which of the following is not a Bluetooth attack?
Question74: ICMP ping and ping sweeps are used to check for active systems and to check
Question77: How is sniffing broadly categorized?
Question79: What statement is true regarding LM hashes?
Question84: The "gray box testing" methodology enforces what kind of restriction?
Question85: Which of the following is an example of two factor authentication?
Question88: Which technical characteristic do Ethereal/Wireshark, TCPDump, and Snort have in common?
Question95: What are the three types of authentication?
Question97: Which of the following parameters enables NMAP's operating system detection feature?
Question112: What is the best defense against privilege escalation vulnerability?
Question115: Which of the following is a symmetric cryptographic standard?
Question125: Which of the following is a characteristic of Public Key Infrastructure (PKI)?
Question126: What results will the following command yield: 'NMAP -sS -O -p 123-153 192.168.100.3'?
Question139: Which of the following is designed to identify malicious attempts to penetrate systems?
Question140: Which of the following levels of algorithms does Public Key Infrastructure (PKI) use?
Question142: One advantage of an application-level firewall is the ability to
Question145: Advanced encryption standard is an algorithm used for which of the following?
Question148: Which of the following is the greatest threat posed by backups?
Question149: A covert channel is a channel that
Question153: Which of the following is a preventive control?
Question156: What is the main reason the use of a stored biometric is vulnerable to an attack?
Question158: Which of the following is a low-tech way of gaining unauthorized access to systems?
Question160: What is a "Collision attack" in cryptography?
Question167: How can telnet be used to fingerprint a web server?
Question171: Which command line switch would be used in NMAP to perform operating system detection?
Question176: Which of the following is a hashing algorithm?
Question182: Which of the following techniques will identify if computer files have been changed?
Question183: How does the Address Resolution Protocol (ARP) work?
Question195: How does an operating system protect the passwords used for account logins?
Question196: Which statement best describes a server type under an N-tier architecture?
Question197: PGP, SSL, and IKE are all examples of which type of cryptography?
Question199: Which of the following is the BEST way to defend against network sniffing?
Question200: Smart cards use which protocol to transfer the certificate in a secure manner?
Question206: Which of the following is an example of an asymmetric encryption implementation?
Question216: What is the benefit of performing an unannounced Penetration Testing?
Question217: Which type of access control is used on a router or firewall to limit network activity?
Question218: Which type of antenna is used in wireless communication?
Question219: An NMAP scan of a server shows port 69 is open. What risk could this pose?
Question220: Which of the following descriptions is true about a static NAT?
Question221: Which of the following is a common Service Oriented Architecture (SOA) vulnerability?
Question222: One way to defeat a multi-level security solution is to leak data via
Question228: What is the most common method to exploit the "Bash Bug" or "ShellShock" vulnerability?
Question234: Which of the following problems can be solved by using Wireshark?
Question237: Which statement is TRUE regarding network firewalls preventing Web Application attacks?
Question239: How can a policy help improve an employee's security awareness?
Question242: Which of the following is a strong post designed to stop a car?
Question243: Which tool can be used to silently copy files from USB devices?
Question247: Which of the following parameters describe LM Hash (see exhibit):
Exhibit:
Question249: Which of the following statements is TRUE?
Question250: Which of the following describes the characteristics of a Boot Sector Virus?
Question252: Which of the following is considered an acceptable option when managing a risk?
Question256: What information should an IT system analysis provide to the risk assessor?
Question263: What is the outcome of the comm"nc -l -p 2222 | nc 10.1.0.43 1234"?
Question264: Risks = Threats x Vulnerabilities is referred to as the:
Question270: Which of the following describes the characteristics of a Boot Sector Virus?
Question275: In Risk Management, how is the term "likelihood" related to the concept of "threat?"
Question277: A circuit level gateway works at which of the following layers of the OSI Model?
Question279: Which method of password cracking takes the most time and effort?
Question280: WPA2 uses AES for wireless data encryption at which of the following encryption levels?
Question281: The "black box testing" methodology enforces which kind of restriction?
Question284: Which of the following is an example of IP spoofing?
Question286: Which tool would be used to collect wireless packet data?
Question287: In the OSI model, where does PPTP encryption take place?
Question294: Which of the following is a client-server tool utilized to evade firewall inspection?
Question298: Which of the following examples best represents a logical or technical control?
Question303: What is the best description of SQL Injection?
Question311: Which of the following is an extremely common IDS evasion technique in the web world?
Question312: Low humidity in a data center can cause which of the following problems?
Question322: Which of the following is the successor of SSL?
Question324: What is the broadcast address for the subnet 190.86.168.0/22?
Question328: A botnet can be managed through which of the following?
Question330: Which type of scan is used on the eye to measure the layer of blood vessels?

