- Question 1 1 Pts A Malicious Actor Forces A Nova Staff Member To Use Her Browser To Send An Authenticated Request To A S 1 (18.54 KiB) Viewed 61 times
D Question 4 1 pts John, an attacker is trying to man-in-the-middle a session. Which protocol will allow John to guess a sequence number? O UDP O UPD Ο Ο Ο Ο Ο ICMP Ο TCP
D Question 3 1 pts A security team is looking for the most secure way to mitigate the theft of company's information from a laptop that can be stolen or left in a hotel room. Select the best answer. Back up everything on the laptop and store the backup in a safe place. O Encrypt the data on the hard drive. O Set a BIOS password to lock the hard drive Use a strong logon password to the operating system.
Question 2 1 pts Matthew, a security engineer for Symantec, LLC performed a security test for his firm. The output of his test is shown below. HTTP/1.1 200 OK Server: Microsoft-IIS/6 Expires: Tue, 17 Jan 2011 01:41:33 GMT Date: Mon, 16 Jan 2011 01:41:33 GMT Content-Type: text/html Accept-Ranges: bytes Last-Modified: Wed, 28 Dec 2010 15:32:21 GMT ETag: "b0aac0542e25c31:89d" Content-Length: 7369 Which of the following is an example of what Mattwew performed? Who is database query O SQL injection Cross-site scripting Banner grabbing with netcat on port 80
Question 1 1 pts A malicious actor forces a NOVA staff member to use her browser to send an authenticated request to a server. What type of attack is it? O CSRF Server side request forgery O XSS session hijacking