Loading demo links...
Showing 1–3 of 20 questions
DRAG DROP
A security consultant is considering authentication options for a financial institution. The following authentication options are available. Drag and drop the security mechanism to the appropriate use case.
Options may be used once.
Select and Place:
Answer is in the explanation below.
SIMULATION
You are a security analyst tasked with interpreting an Nmap scan output from Company A’s privileged network.
The company’s hardening guidelines indicate the following:
There should be one primary server or service per device.
Only default ports should be used.
Non-secure protocols should be disabled.
INSTRUCTIONS
Using the Nmap output, identify the devices on the network and their roles, and any open ports that should be closed. For each device found, add a device entry to the Devices Discovered list, with the following information:
The IP address of the device
The primary server or service of the device
The protocol(s) that should be disabled based on the hardening guidelines
To select multiple protocols, use CTRL+CLICK.
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.
Answer is in the explanation below.
A penetration testing manager is contributing to an RFP for the purchase of a new platform. The manager has provided the following requirements:
Must be able to MITM web-based protocols
Must be able to find common misconfigurations and security holes
Which of the following types of testing should be included in the testing platform? (Choose two.)
Select all that apply, then click Submit answer.
Reverse engineering tool
HTTP intercepting proxy
Vulnerability scanner
File integrity monitor
Password cracker
Fuzzer
