CEH Exam Prep 2 Questions with Answers All Correct
8 views 0 purchase
Course
CEH
Institution
CEH
CEH Exam Prep 2 Questions with Answers All Correct
Which of the following cryptography techniques requires the sender and receiver of a message to possess the same encryption key? - Answer-Symmetric encryption
Which of the following is an independent instance of an operating system created ...
CEH Exam Prep 2 Questions with
Answers All Correct
Which of the following cryptography techniques requires the sender and receiver of a
message to possess the same encryption key? - Answer-Symmetric encryption
Which of the following is an independent instance of an operating system created by a
virtual machine monitor (VMM)? - Answer-Guest machine
Which of the following is the reason for using external firewalls? - Answer-To limit the
access between protected and public networks
Which of the following SDN components provides an abstract view of the network (the
network model)? - Answer-Control plane
Which of the following steps are included in the incident triage phase of the incident
response process? - Answer-Incident analysis and validation, classification, and
prioritization
Which of the following Linux components is an interface to the kernel that takes
commands from the user and executes the functions of the kernel? - Answer-Shell
Which of the following is a part of the security descriptor of an object and controls how a
system audits attempts to access the object? - Answer-System access control list
(SACL)
Which of the following is the most critical attack surface in cloud computing? - Answer-
Service to cloud
Which of the following Google Cloud IAM members is known as a virtual group of all
Google accounts? - Answer-G Suite domain
Which of the following BC/DR phases involves repairing the damage to facilities and
premises? - Answer-Restoration
Which of the following categories of Internet access policy forbids everything and
imposes strict restrictions on all company systems or network usage? - Answer-
Paranoid policy
Which of the following types of logging can be disabled and enabled in a production
system based on circumstantial requirements? - Answer-Application debug logging
, In which of the following attacks does the attacker continuously send many DHCP
requests with fake MAC addresses that utilize all the available IP addresses? - Answer-
DHCP starvation attack
Which of the following modulation techniques is used by a local area wireless network
(LAWN)? - Answer-Frequency-hopping spread spectrum (FHSS)
Which of the following access control models is used by Security-Enhanced Linux
(SELinux) and Trusted Solaris? - Answer-Mandatory access control
Which of the following types of Windows event logs has information about hardware
changes, system changes, device drivers, and all machine-related activities? - Answer-
System event log
Which of the following best describes how internal firewalls protect a network? -
Answer-By protecting one segment from another in an organizational network
Which of the following intrusion detection techniques detect an unexpected generation
of a sequence of repeated commands in the network that includes detecting variations
in command length, command attributes, and other anomalies? - Answer-Stateful
protocol analysis
Which of the following allows network defenders to download, analyze, test, edit, and
store the Microsoft-recommended security baselines to Windows systems and other
relevant Microsoft products? - Answer-Security Compliance Toolkit
Which of the following filters can be applied to detect an ICMP ping sweep attempt
using Wireshark? - Answer-icmp.type==8
Which of the following firewall technologies filters packets at the network layer,
determines whether session packets are legitimate, and evaluates the contents of
packets at the application layer? - Answer-Stateful multi-layer inspection
Which of the following best describes how an administrator limits the number of files a
user can create on a system? - Answer-By implementing disk quota
Which of the following incident response processes has the involvement of determining
the affected resources, impact on the business, and different types of losses due to an
incident? - Answer-Incident analysis and validation
Which of the following has controls related to the implementation of a specific
technology useful for enforcing and supporting policies? - Answer-Standards
Which of the following actors of the NIST cloud computing reference architecture is an
entity that can manage cloud services in terms of the usage, performance, and delivery
The benefits of buying summaries with Stuvia:
Guaranteed quality through customer reviews
Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.
Quick and easy check-out
You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.
Focus on what matters
Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!
Frequently asked questions
What do I get when I buy this document?
You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.
Satisfaction guarantee: how does it work?
Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.
Who am I buying these notes from?
Stuvia is a marketplace, so you are not buying this document from us, but from seller Scholarsstudyguide. Stuvia facilitates payment to the seller.
Will I be stuck with a subscription?
No, you only buy these notes for $13.99. You're not tied to anything after your purchase.