Question #11: A security analyst is investigating an incident to determine what an attacker was able to do on a compromised laptop. The analyst reviews the following SIEM log: Which of the following describes the method that was used to compromise the laptop?

An attacker was able to bypass application whitelisting by emailing a spreadsheet attachment with an embedded PowerShell in the file

An attacker was able to move laterally from PC1 to PC2 using a pass-the-hash attack

An attacker was able to install malware to the CAasdf234 folder and use it to gain administrator rights and launch Outlook

An attacker was able to phish user credentials successfully from an Outlook user profile

Question #14: A security analyst is hardening a Linux workstation and must ensure. It has public keys forwarded to remote systems for secure login. Which of the following steps should the analyst perform to meet these requirements? (Select TWO)

Forward the keys using ssh-copy-id.

Forward the keys using ssh-keygen.

Forward the keys using openssl -s.

Question #19: A retail company that is launching a new website to showcase the company's product line and other information for online shoppers registered the following URLs: Which of the following should the company use to secure its website if the company is concerned with convenience and cost?

An extended validation certificate

Question #21: A financial analyst is expecting an email containing sensitive information from a client. When the email arrives, the analyst receives an error and is unable to open the encrypted message. Which of the following is the MOST likely cause of the issue?

The S/MIME plug-in is not enabled.

The SSL certificate has expired.

Secure IMAP was not implemented

Question #34: A security analyst was called to Investigate a file received directly from a hardware manufacturer. The analyst is trying to determine whether the file was modified in transit before installation on the user's computer. Which of the following can be used to safely assess the file?

Check the hash of the installation file

Verify the URL download location

Verify the code-signing certificate

Question #35: An application developer accidentally uploaded a company's code-signing certificate private key to a public web server. The company is concerned about malicious use of its certificate. Which of the following should the company do FIRST?

Revoke the code-signing certificate.

Delete the private key from the repository-.

Verify the public key is not exposed as well.

Update the DLP solution to check for private keys.

Question #39: Security analysts notice a server login from a user who has been on vacation for two weeks The analysts confirm that the user did not log in to the system while on vacation After reviewing packet capture logs, the analysts notice the following: Which of the following occurred?

C. An attacker used a pass-the-hash attack to gain access

A. A buffer overflow was exploited to gain unauthorized access

B. The user's account was compromised, and an attacker changed the login credentials

D. An insider threat with username smithJA logged in to the account

Question #47: An organization is migrating several SaaS applications that support SSO. The security manager wants to ensure the migration is completed securely. Which of the following should the organization consider before implementation? (Select TWO).

The back-end directory source The identity federation protocol

Question #48: A forensic analyst needs to prove that data has not been tampered with since it was collected. Which of the following methods will the analyst MOST likely use?

Calculate the checksum using a hashing algorithm

Look for tampering on the evidence collection bag

Encrypt the collected data using asymmetric encryption

Ensure proper procedures for chain of custody are being followed

Question #60: Which of the following supplies non-repudiation during a forensics investigation?

C. Using a SHA-2 signature of a drive image

A. Dumping volatile memory contents first

D. Logging everyone in contact with evidence

Question #69: A systems administrator needs to install the same X.509 certificate on multiple servers. Which of the following should the administrator use?

An extended validation certificate

Chapter 10 Understanding Cryptography and PKI

Authored by sinav hazirlik

Computers

Professional Development

Used 6+ times

Chapter 10 Understanding Cryptography and PKI

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

36 questions

Show all answers

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Question #1: A symmetric encryption algorithm is BEST suited for:

key-exchange scalability

protecting large amounts of data

providing hashing capabilities

implementing non-repudiation

Answer explanation

Simetrik şifreleme algoritmaları büyük veri kütlelerini korumak için en uygun olanıdır.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Question #2: A security analyst needs to generate a server certificate to be used for 802.1X and secure RDP connections. The analyst is unsure what is required to perform the task and solicits help from a senior colleague. Which of the following is the FIRST step the senior colleague will most likely tell the analyst to perform to accomplish this task?

Create an OCSP

Generate a CSR

Create a CRL

Generate a .pfx file

Answer explanation

Bu görevi yerine getirmek için, kıdemli bir meslektaşın muhtemelen analiste yapması gereken İLK adımı "CSR (Certificate Signing Request) oluşturmak" olacaktır.
CSR, bir sertifika otoritesine (Certificate Authority) sunulmak üzere sunucu sertifikasının oluşturulması için kullanılan bir istektir. CSR, sunucunun kimlik bilgilerini (örneğin, sunucu adı, kuruluş adı) ve genellikle kullanılacak şifreleme algoritmasını içerir.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Question #3: A security analyst discovers that a company username and password database was posted on an internet forum. The username and passwords are stored in plain text. Which of the following would mitigate the damage done by this type of data exfiltration in the future?

Create DLP controls that prevent documents from leaving the network

Implement salting and hashing

Configure the web content filter to block access to the forum.

Increase password complexity requirements

Answer explanation

Bu tür veri dışa çıkarılmasının neden olduğu hasarı azaltmak için, B seçeneği olan "tuzlama ve karma kullanmak" en uygun olanıdır.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Question #5: A security architect at a large, multinational organization is concerned about the complexities and overhead of managing multiple encryption keys securely in a multi cloud provider environment. The security architect is looking for a solution with reduced latency to allow the incorporation of the organization's existing keys and to maintain consistent, centralized control and management regardless of the data location. Which of the following would BEST meet the architect's objectives?

Trusted Platform Module

laaS

HSMaaS

PaaS

Key Management Service

Answer explanation

Hizmet olarak HSM, şirket içi HSM'ye veya bulut sağlayıcısından KMS'ye bir alternatiftir. Şifreleme anahtarları nerede kullanılırsa kullanılsın, hem anahtar yönetimi için HSM düzeyinde güvenliğe hem de tek bir yönetim ortamının tutarlılığına ihtiyaç duyan kuruluşlar için idealdir. HSM cihazlarına ihtiyaç duymadan HSM dereceli anahtar depolama sağlayan Hizmet Olarak HSM, hızla uygulanır ve verileri, süreçleri ve coğrafi büyümeyi desteklemek için kolayca ölçeklenir.

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Question #6: A security assessment determines DES and 3DES are still being used on recently deployed production servers. Which of the following did the assessment identify?

Unsecure protocols

Default settings

Open permissions

Weak encryption

Answer explanation

Güvenlik değerlendirmesi, DES ve 3DES'in hala yeni kurulan üretim sunucularında kullanıldığını belirlemiştir. Bu tespit, "zayıf şifreleme"yi (weak encryption) ortaya koymaktadır.
DES (Data Encryption Standard) ve 3DES (Triple Data Encryption Standard), eskimiş ve güvenlik açıkları bulunan şifreleme algoritmalarıdır. Bu algoritmaların güvenlik açıkları keşfedildiği için günümüzde güvenli kabul edilmemektedir. Daha güçlü ve modern şifreleme algoritmaları, DES ve 3DES'in yerini almıştır (örneğin, AES).

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Question #7: A security analyst has been asked to investigate a situation after the SOC started to receive alerts from the SIEM. The analyst first looks at the domain controller and finds the following events:
To better understand what is going on, the analyst runs a command and receives the following output:
Based on the analyst’s findings, which of the following attacks is being executed?

Credential harvesting

Keylogger

Brute-force

Spraying

MULTIPLE CHOICE QUESTION

1 min • 1 pt

Question #8: Given the following logs: Which of the following BEST describes the type of attack that is occurring?

Rainbow table

Dictionary

Password spraying

Pass-the-hash

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

37 questions

Hardware y Software

Quiz

•

Professional Development

40 questions

C&SE PRE-KNOWLEDGE SURVEY (A+ 1102-CORE 2)

Quiz

•

University - Professi...

40 questions

HTML CSS JS Teacher Assessment

Quiz

•

Professional Development

35 questions

Unit 5 CH 3 and 4

Quiz

•

Professional Development

39 questions

CITL3 Review

Quiz

•

Professional Development

36 questions

Computer Essentials Practice Quiz

Quiz

•

Professional Development

36 questions

Comunicació empresarial i atenció al client. RA1, RA2 i RA3

Quiz

•

Professional Development

40 questions

CTFL Mock Test -1

Quiz

•

Professional Development

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

10 questions

Probability Practice

Quiz

•

4th Grade

15 questions

Probability on Number LIne

Quiz

•

4th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

6 questions

Appropriate Chromebook Usage

Lesson

•

7th Grade

10 questions

Greek Bases tele and phon

Quiz

•

6th - 8th Grade

Discover more resources for Computers

20 questions

Black History Month Trivia Game #1

Quiz

•

Professional Development

20 questions

90s Cartoons

Quiz

•

Professional Development

12 questions

Mardi Gras Trivia

Quiz

•

Professional Development

7 questions

Copy of G5_U5_L14_22-23

Lesson

•

KG - Professional Dev...

12 questions

Unit 5: Puerto Rico W1

Quiz

•

Professional Development

42 questions

LOTE_SPN2 5WEEK2 Day 4 We They Actividad 3

Quiz

•

Professional Development

15 questions

Balance Equations Hangers

Quiz

•

Professional Development

31 questions

Servsafe Food Manager Practice Test 2021- Part 1

Quiz

•

9th Grade - Professio...

Chapter 10 Understanding Cryptography and PKI

Question #1: A symmetric encryption algorithm is BEST suited for:

Simetrik şifreleme algoritmaları büyük veri kütlelerini korumak için en uygun olanıdır.

Question #3: A security analyst discovers that a company username and password database was posted on an internet forum. The username and passwords are stored in plain text. Which of the following would mitigate the damage done by this type of data exfiltration in the future?

Bu tür veri dışa çıkarılmasının neden olduğu hasarı azaltmak için, B seçeneği olan "tuzlama ve karma kullanmak" en uygun olanıdır.

Question #6: A security assessment determines DES and 3DES are still being used on recently deployed production servers. Which of the following did the assessment identify?

Question #8: Given the following logs: Which of the following BEST describes the type of attack that is occurring?

Question #9: A security analyst is reviewing the following attack log output: Which of the following types of attacks does this MOST likely represent?

Question #10: Which of the following algorithms has the SMALLEST key size?

DES (56)
Twofish (128,192,256)
RSA (1024, 2048, and 4096)
AES (128, 192, or 256)

Question #11: A security analyst is investigating an incident to determine what an attacker was able to do on a compromised laptop. The analyst reviews the following SIEM log: Which of the following describes the method that was used to compromise the laptop?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

Chapter 10 Understanding Cryptography and PKI

Question #1: A symmetric encryption algorithm is BEST suited for:

Simetrik şifreleme algoritmaları büyük veri kütlelerini korumak için en uygun olanıdır.

Question #3: A security analyst discovers that a company username and password database was posted on an internet forum. The username and passwords are stored in plain text. Which of the following would mitigate the damage done by this type of data exfiltration in the future?

Bu tür veri dışa çıkarılmasının neden olduğu hasarı azaltmak için, B seçeneği olan "tuzlama ve karma kullanmak" en uygun olanıdır.

Question #6: A security assessment determines DES and 3DES are still being used on recently deployed production servers. Which of the following did the assessment identify?

Question #8: Given the following logs: Which of the following BEST describes the type of attack that is occurring?

Question #9: A security analyst is reviewing the following attack log output: Which of the following types of attacks does this MOST likely represent?

Question #10: Which of the following algorithms has the SMALLEST key size?

DES (56) Twofish (128,192,256) RSA (1024, 2048, and 4096) AES (128, 192, or 256)

Question #11: A security analyst is investigating an incident to determine what an attacker was able to do on a compromised laptop. The analyst reviews the following SIEM log: Which of the following describes the method that was used to compromise the laptop?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

DES (56)
Twofish (128,192,256)
RSA (1024, 2048, and 4096)
AES (128, 192, or 256)