The ability to find all web pages, directories and other files that make up a web application is provided by a:

None of these answers are correct

When developing SQL injection attacks, the final resulting statement must what?

It must end with a SQL comment ( -- )

It must meet the ISO SQL:2008 standard

It must start with a single quote

What is the term for technology that restricts access to networks or services based upon the user's geographical location? (e.g. 'Only people located in Canada are allowed to connect to our VPN')

TTL: Topographic Traffic Limiting

Ultimately, injection attacks are caused by what?

Developers not sanitizing application input

Unpatched versions of applications and operating systems

Operating systems not restricting memory from one process to another

Development languages using immutable strings

Developers not sanitizing application input

A tool that examines responses from web-servers and web sites in order to ‘fingerprint’ them for an analysis of what software and versions they are (and sometimes, to list vulnerabilities) is called what?

None of these answers are correct

Which of the following tasks can be performed with the tool NTDS Audit?

Identify the number of accounts with non-expiring passwords

Show the last login date/time of each administrative user

Show the last login date/time of each non-administrative user.

Identify the number of accounts with non-expiring passwords

Give information about domain controllers that have weak network encryption

Ultimately, who should be responsible for security in an organization?

A person with the authority to set policy and affect change through the organization.

All of these answers are correct.

The ability to intercept and change requests as they leave a web browser is provided by a:

None of these answers are correct

What is one mistake network administrators often make from a security perspective? (choose the best answer per the lecture)

Using domain admin privileged accounts for day-to-day non-admin use.

Enforcing password security on users who do not require it.

Forgetting passwords on systems since they have too many passwords.

Not writing passwords down in a safe place, such as a sticky note on your workstation.

Using domain admin privileged accounts for day-to-day non-admin use.

Which of the following statements is true about Metasploit?

Metasploit has support for passive, as well as active, exploits

Broadly speaking, there are 6 types of network connections that Metasploit shells use

Metasploit auxiliary modules are specifically used to exploit alternative operating systems such as OpenVMS, Android, and OSX

Metasploit was invented by Horst Feistel, who was working for IBM at the time

PostgreSQL Gate & PSU MCQ Questions With Answers Quiz

4.

Your company works in the medical industry and sales people have access to confidential medical records located in spreadsheets on their laptops. What is the most important strategy to limit your company risk from a laptop getting (physically) stolen?

Make sure that all laptop accounts as setup as active directory domain accounts with strong passwords.

Use full disk encryption with strong passwords on all laptops.

Create a group policy that requires .xlsx files to be password protected in Excel.

Ensure that all laptops have up to date anti-virus scanners

Install tracking software like LoJack on all company laptops.

1.

Metasploit is an exploitation tool that has multiple user interfaces. Which of the options below is a valid user interfaces for Metasploit?

2.

Injecting a malicious script into a website which will later be executed in a victim’s web browser is called what?

3.

The ability to find all web pages, directories and other files that make up a web application is provided by a:

4.

Your company works in the medical industry and sales people have access to confidential medical records located in spreadsheets on their laptops. What is the most important strategy to limit your company risk from a laptop getting (physically) stolen?

5.

When developing SQL injection attacks, the final resulting statement must what?

6.

What is the term for technology that restricts access to networks or services based upon the user's geographical location? (e.g. 'Only people located in Canada are allowed to connect to our VPN')

7.

Ultimately, injection attacks are caused by what?

8.

A tool that examines responses from web-servers and web sites in order to ‘fingerprint’ them for an analysis of what software and versions they are (and sometimes, to list vulnerabilities) is called what?

9.

Which of the following tasks can be performed with the tool NTDS Audit?

10.

True or False: When configuring secure password policies, it is important to set a minimum password age. (e.g. 1 day)

11.

Ultimately, who should be responsible for security in an organization?

12.

Which database would you typically start before running Metasploit?

13.

The ability to intercept and change requests as they leave a web browser is provided by a:

14.

What is one mistake network administrators often make from a security perspective? (choose the best answer per the lecture)

15.

Which of the following statements is true about Metasploit?

Time

1. Metasploit is an exploitation tool that has multiple user interfaces. Which of the options below is a valid user interfaces for Metasploit?

2. Injecting a malicious script into a website which will later be executed in a victim’s web browser is called what?

3. The ability to find all web pages, directories and other files that make up a web application is provided by a:

4. Your company works in the medical industry and sales people have access to confidential medical records located in spreadsheets on their laptops. What is the most important strategy to limit your company risk from a laptop getting (physically) stolen?

5. When developing SQL injection attacks, the final resulting statement must what?

6. What is the term for technology that restricts access to networks or services based upon the user's geographical location? (e.g. 'Only people located in Canada are allowed to connect to our VPN')

7. Ultimately, injection attacks are caused by what?

8. A tool that examines responses from web-servers and web sites in order to ‘fingerprint’ them for an analysis of what software and versions they are (and sometimes, to list vulnerabilities) is called what?

9. Which of the following tasks can be performed with the tool NTDS Audit?

10. True or False: When configuring secure password policies, it is important to set a minimum password age. (e.g. 1 day)

11. Ultimately, who should be responsible for security in an organization?

12. Which database would you typically start before running Metasploit?

13. The ability to intercept and change requests as they leave a web browser is provided by a:

14. What is one mistake network administrators often make from a security perspective? (choose the best answer per the lecture)

15. Which of the following statements is true about Metasploit?

Time

Report Question

Support mcqmojo.com by disabling your adblocker.

1.

Metasploit is an exploitation tool that has multiple user interfaces. Which of the options below is a valid user interfaces for Metasploit?

2.

Injecting a malicious script into a website which will later be executed in a victim’s web browser is called what?

3.

The ability to find all web pages, directories and other files that make up a web application is provided by a:

4.

Your company works in the medical industry and sales people have access to confidential medical records located in spreadsheets on their laptops. What is the most important strategy to limit your company risk from a laptop getting (physically) stolen?

5.

When developing SQL injection attacks, the final resulting statement must what?

6.

What is the term for technology that restricts access to networks or services based upon the user's geographical location? (e.g. 'Only people located in Canada are allowed to connect to our VPN')

7.

Ultimately, injection attacks are caused by what?

8.

A tool that examines responses from web-servers and web sites in order to ‘fingerprint’ them for an analysis of what software and versions they are (and sometimes, to list vulnerabilities) is called what?

9.

Which of the following tasks can be performed with the tool NTDS Audit?

10.

True or False: When configuring secure password policies, it is important to set a minimum password age. (e.g. 1 day)

11.

Ultimately, who should be responsible for security in an organization?

12.

Which database would you typically start before running Metasploit?

13.

The ability to intercept and change requests as they leave a web browser is provided by a:

14.

What is one mistake network administrators often make from a security perspective? (choose the best answer per the lecture)

15.

Which of the following statements is true about Metasploit?