Question 1

A company website was hacked via the following SQL query: email, passwd, login_id, full_name FROM members WHERE email = “attacker@somewhere.com”;
DROP TABLE members; –” Which of the following did the hackers perform?

Accepted Answer

Correct answer: C

Question 2

After a hacker obtained a shell on a Linux box, the hacker then sends the exfiltrated data via Domain Name System (DNS). This is an example of which type of
data exfiltration?

Accepted Answer

Correct answer: A

Question 3

A security investigator has detected an unauthorized insider reviewing files containing company secrets. Which of the following commands could the investigator
use to determine which files have been opened by
this user?

Accepted Answer

Correct answer: B

Question 4

A network security analyst has noticed a flood of Simple Mail Transfer Protocol (SMTP) traffic to internal clients. SMTP traffic should only be allowed to email
servers. Which of the following commands would stop this attack? (Choose two.)

Accepted Answer

Correct answer: AC

Question 5

Nmap is a tool most commonly used to:

Accepted Answer

Correct answer: C

Question 6

According to company policy, all accounts with administrator privileges should have suffix _ja. While reviewing Windows workstation configurations, a security
administrator discovers an account without the suffix in the administrator’s group. Which of the following actions should the security administrator take?

Accepted Answer

Correct answer: B

Question 7

Tcpdump is a tool that can be used to detect which of the following indicators of compromise?

Accepted Answer

Correct answer: A

Question 8

A Linux administrator is trying to determine the character count on many log files. Which of the following command and flag combinations should the administrator
use?

Accepted Answer

Correct answer: C

Question 9

A first responder notices a file with a large amount of clipboard information stored in it. Which part of the MITRE ATT&CK matrix has the responder discovered?

Accepted Answer

Correct answer: D

Question 10

Which of the following are common areas of vulnerabilities in a network switch? (Choose two.)

Accepted Answer

Correct answer: AB