MK0-201 Online Practice Questions and Answers

When doing a Half-Open Scan what packet type would be expected as a response if the port being probed is closed?

A. FIN

B. ACK

C. RST

D. RST/ACK

Looking at the Window presented below,what type of mail server is running on the remote host?

A. Exchange 8.13.4

B. Hotmail 8.13.4

C. Sendmail 8.13.4

D. Exim Mail 8.13.4

Clement is someone who greatly enjoys fishing.

Clement recently visited a web site that is very proactive in its attempt to save marine life.

While on the site he downloaded a disobedience kit where his free CPU cycle can help contribute to the noble cause of saving the rainbow trout from extinction. Which of the following terms best describes Clements activity?

A. Compulsive Fishing

B. Hacktivism

C. Green Peace

D. Crackering

What are some of the weaknesses that make LAN Manager Hashes much easier to crak by an attacker? (Select all that apply.)

A. The 14 character paasword is split in two

B. The password is converted to Uppercase

C. The hash value is encrypted using MD5

D. The hash value is encrypted with AES

Footprinting is one of the first steps performed by a Penetration Tester.

Many security testers neglect to perform this phase whereby you have the opportunity to easily information that can later be matched with technical discovery to give you a greater assurance in your finding. Which of the following would NOT be doen in the footprinting phase?

A. Collecting DNS registration information

B. Finding network IP addresses range in public DB

C. Maintaining Access

D. Visiting and querying the Security Exchange Commission database.

Select the best method of securing the underlying data tables on a database system.

A. Create service accounts with the correct privileges for the action the user is carrying out, i.e.read only or full control.

B. Allow only users to connect as the SA account.

C. Create a service account with full access privilege over the underlying data tables.

D. Allow only applications to interrogate a mirror of the database.

System administrators need to be aware of what tool that adds while-bytes of executable code to an existing malicious binary with the goal of evading anti-trojan software using MD5 and CRC checksums? Choose the best answer.

A. ProDetect

B. RegMon

C. ADMutate

D. Stealth Tools v.2.0

When a digital certificate has been revoked before its expiry date,how will the Certification Authority (CA) that issued the certificate inform other CAs that the specific certificate is no longer valid.

A. By posting it on the CA web site

B. By sending an email message to the other CAs

C. By posting it on the certificate revocation list

D. By posting it on the certificate expiry list

What are some of the weaknesses that make LAN Manager Hashes much easier to crack by an attacker? (Select all that apply)

A. The 14 character password is split in two

B. The password is converted to Uppercase

C. The hash value is encrypted using MD5

D. The hash value is encrypted with AES

Which of these methods would help protect DNS records from unauthorized users?(Choose two.)

A. Removing the default setting on NT 4 and Windows 2000 DNS servers that allows zone transfers to any IP address

B. Using Active Directory Integrated zones on publicly-available DNS servers

C. Blocking incoming UDP port 53 requests to a DMZ hosting a DNS server

D. Using two DNS servers;An internal DNS server with internal resource records and an external DNS server with DMZ-based resource records